From Split to Share: Private Inference with Distributed Feature Sharing

Cloud-based Machine Learning as a Service MLaaS raises serious privacy concerns when handling sensitive client data. Existing Private Inference PI methods face a fundamental trade-off between privacy and efficiency: cryptographic approaches offer strong protection but incur high computational...

PT-2025-32025 · Unknown · Distributed Clipboard Module

Name of the Vulnerable Software and Affected Versions: Distributed clipboard module affected versions not specified Description: A permission control vulnerability exists in the distributed clipboard module. Successful exploitation of this issue may affect service confidentiality. Recommendations...

Optimal Planning for Enhancing the Resilience of Modern Distribution Systems against Cyberattacks

The increasing integration of IoT-connected devices in smart grids has introduced new vulnerabilities at the distribution level. Of particular concern is the potential for cyberattacks that exploit high-wattage IoT devices, such as EV chargers, to manipulate local demand and destabilize the grid...

Next-Generation Quantum Neural Networks: Enhancing Efficiency, Security, and Privacy

This paper provides an integrated perspective on addressing key challenges in developing reliable and secure Quantum Neural Networks QNNs in the Noisy Intermediate-Scale Quantum NISQ era. In this paper, we present an integrated framework that leverages and combines existing approaches to enhance...

CVE-2025-48498

A null pointer dereference vulnerability exists in the Distributed Transaction component of Bloomberg Comdb2 8.1 when processing a number of fields used for coordination. A specially crafted protocol buffer message can lead to a denial of service. An attacker can simply connect to a database...

CVE-2025-46354

A denial of service vulnerability exists in the Distributed Transaction Commit/Abort Operation functionality of Bloomberg Comdb2 8.1. A specially crafted network packet can lead to a denial of service. An attacker can send a malicious packet to trigger this vulnerability...

CVE-2025-36512

A denial of service vulnerability exists in the Bloomberg Comdb2 8.1 database when handling a distributed transaction heartbeat. A specially crafted protocol buffer message can lead to a denial of service. An attacker can simply connect to a database instance over TCP and send the crafted message...

CVE-2025-36512

A denial of service vulnerability exists in the Bloomberg Comdb2 8.1 database when handling a distributed transaction heartbeat. A specially crafted protocol buffer message can lead to a denial of service. An attacker can simply connect to a database instance over TCP and send the crafted message...

CVE-2025-48498

A null pointer dereference vulnerability exists in the Distributed Transaction component of Bloomberg Comdb2 8.1 when processing a number of fields used for coordination. A specially crafted protocol buffer message can lead to a denial of service. An attacker can simply connect to a database...

CVE-2025-48498

CVE-2025-48498 is a denial-of-service vulnerability in Bloomberg Comdb2 8.1’s Distributed Transaction component. A null pointer dereference can occur while processing coordination fields when handling a specially crafted protocol buffer in a network message over TCP, potentially crashing the comd...

CVE-2025-36512

CVE-2025-36512 describes a denial-of-service in Bloomberg Comdb2 8.1 when handling a distributed transaction heartbeat. A specially crafted protocol buffer message sent over TCP can cause a DoS, with the CVE affecting the heartbeat path of distributed transactions. Talos confirms vulnerable versi...

PT-2025-30430 · Bloomberg · Bloomberg Comdb2

Name of the Vulnerable Software and Affected Versions: Bloomberg Comdb2 version 8.1 Description: A denial of service issue exists in the Bloomberg Comdb2 database when processing a distributed transaction heartbeat. Sending a specially crafted protocol buffer message to a database instance over T...

Bloomberg Comdb2 安全漏洞

Bloomberg Comdb2 is a Bloomberg open source distributed relational database management system. A security vulnerability exists in Bloomberg Comdb2 version 8.1 that stems from vulnerability to denial-of-service attacks when handling distributed transactional heartbeats...

Bloomberg Comdb2 代码问题漏洞

Bloomberg Comdb2 is a Bloomberg open source distributed relational database management system. A code issue vulnerability exists in Bloomberg Comdb2 version 8.1, which stems from a null pointer dereference in the handling of coordinated fields by the distributed transaction component, potentially...

Why Observability Tools Tend to Fail at Scale

Observability is no longer just about catching errors or checking if a server is up. In modern distributed systems, it’s about understanding behavior across dozens, if not thousands, of services, all running in different environments and generating massive amounts of data...

xxl-job 命令注入漏洞

XXL-JOB is a distributed task scheduling platform by the individual developer Xu Xueli xuxueli. A command injection vulnerability exists in xxl-job 3.1.1 and earlier versions, which stems from a misuse of the commandJobHandler function leading to os command injection attacks...

How to Mitigate and Defend against DDoS Attacks in IoT Devices

Distributed Denial of Service DDoS attacks have become increasingly prevalent and dangerous in the context of Internet of Things IoT networks, primarily due to the low-security configurations of many connected devices. This paper analyzes the nature and impact of DDoS attacks such as those launch...

BIT-PYTORCH-2024-48063

In PyTorch =2.4.1, the RemoteModule has Deserialization RCE. NOTE: this is disputed by multiple parties because this is intended behavior in PyTorch distributed computing...

The vulnerability of the Azure Service Fabric distributed system, related to incorrect definition of the link before accessing the file, allows attackers to escalate their privileges.

The vulnerability of the Azure Service Fabric distributed system is related to an incorrect definition of the link before accessing the file. Exploiting this vulnerability can allow attackers to increase their privileges...

[SECURITY] Fedora 41 Update: salt-3007.5-2.fc41

Salt is a distributed remote execution system used to execute commands and query data. It was developed in order to bring the best solutions found in the world of remote execution together and make them better, faster and more malleable. Salt accomplishes this via its ability to handle larger loa...