Lucene search
K

2342 matches found

Packet Storm News
Packet Storm News
added 2026/04/07 12:0 a.m.4 views

Foundations for Agentic AI Investigations from the Forensic Analysis of OpenClaw

Agentic Al systems are increasingly deployed as personal assistants and are likely to become a common object of digital investigations. However, little is known about how their internal state and actions can be reconstructed during forensic analysis. Despite growing popularity, systematic forensi...

6.1AI score
Exploits0
vulnersOsv
vulnersOsv
added 2026/04/06 5:51 p.m.4 views

sfx (=0.1.0) potentially affected by CVE-2025-64182 via openexr (=3.2.4)

openexr PYPI version =3.2.4 is affected by a known vulnerability. The following packages have a transitive dependency on openexr and may be impacted: - sfx =0.1.0 Source cves: CVE-2025-64182 Source advisory: OSV:GHSA-VH63-9MQX-WMJR...

7.8CVSS7.1AI score0.0021EPSS
Exploits1
Packet Storm News
Packet Storm News
added 2026/04/05 12:0 a.m.1 views

Evaluating Future Air Traffic Management Security

The L-Band Digital Aviation Communication System LDACS aims to modernize communications between the aircraft and the tower. Besides digitizing this type of communication, the contributors also focus on protecting them against cyberattacks. There are several proposals regarding LDACS security, and...

5.9AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/01 12:0 a.m.10 views

PT-2026-29489

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.19.0-rc7-next-20260127 Description The Linux kernel contains a flaw within the apparmor subsystem, specifically in the match char macro. This macro incorrectly evaluates its character parameter multiple times...

7.8CVSS6.7AI score0.00177EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/28 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-23349

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: HID: pidff: Fix condition effect bit clearing As reported by MPDarkGuy on discord, NULL...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References2
CVE
CVE
added 2026/03/26 8:27 p.m.13 views

CVE-2026-33541

CVE-2026-33541 affects TSPortal prior to version 34. A validation logic side effect allowed creation of arbitrary user records in the database, as invalid usernames were supposed to be rejected but a side effect caused records to be created regardless of request success, enabling uncontrolled dat...

6.5CVSS5.8AI score0.00293EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/03/26 8:27 p.m.22 views

CVE-2026-33541 TSPortal's Uncontrolled User Creation via Validation Side Effects Leads to Potential Denial of Service

TSPortal is the WikiTide Foundation’s in-house platform used by the Trust and Safety team to manage reports, investigations, appeals, and transparency work. Prior to version 34, a flaw in TSPortal allowed attackers to create arbitrary user records in the database by abusing validation logic. Whil...

6.5CVSS0.00293EPSS
Exploits1References1
OSV
OSV
added 2026/03/26 8:27 p.m.9 views

CVE-2026-33541 TSPortal's Uncontrolled User Creation via Validation Side Effects Leads to Potential Denial of Service

TSPortal is the WikiTide Foundation’s in-house platform used by the Trust and Safety team to manage reports, investigations, appeals, and transparency work. Prior to version 34, a flaw in TSPortal allowed attackers to create arbitrary user records in the database by abusing validation logic. Whil...

6.5CVSS6AI score0.00293EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/03/26 12:0 a.m.13 views

PT-2026-28493

Name of the Vulnerable Software and Affected Versions TSPortal versions prior to 34 Description TSPortal, the WikiTide Foundation’s in-house platform used by the Trust and Safety team, was found to have a flaw that allowed attackers to create arbitrary user records in the database. This was...

6.5CVSS6AI score0.00293EPSS
Exploits1References6
EUVD
EUVD
added 2026/03/25 12:30 p.m.4 views

EUVD-2026-15319

In the Linux kernel, the following vulnerability has been resolved: HID: pidff: Fix condition effect bit clearing As reported by MPDarkGuy on discord, NULL pointer dereferences were happening because not all the conditional effects bits were cleared. Properly clear all conditional effect bits fro...

5.6AI score0.00121EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/03/25 11:16 a.m.8 views

CVE-2026-23349

In the Linux kernel, the following vulnerability has been resolved: HID: pidff: Fix condition effect bit clearing As reported by MPDarkGuy on discord, NULL pointer dereferences were happening because not all the conditional effects bits were cleared. Properly clear all conditional effect bits fro...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/03/25 10:27 a.m.1 views

CVE-2026-23349

In the Linux kernel, the following vulnerability has been resolved: HID: pidff: Fix condition effect bit clearing As reported by MPDarkGuy on discord, NULL pointer dereferences were happening because not all the conditional effects bits were cleared. Properly clear all conditional effect bits fro...

5.6AI score0.00121EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/03/25 10:27 a.m.14 views

CVE-2026-23349

CVE-2026-23349 concerns the Linux kernel HID subsystem, specifically the pidff module. The issue arises from not clearing all conditional effect bits, which can lead to NULL pointer dereferences and potential system instability. The root cause is improper handling of the ffbit flag where some con...

5.5CVSS5.6AI score0.00121EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/03/25 10:27 a.m.6 views

CVE-2026-23349 HID: pidff: Fix condition effect bit clearing

In the Linux kernel, the following vulnerability has been resolved: HID: pidff: Fix condition effect bit clearing As reported by MPDarkGuy on discord, NULL pointer dereferences were happening because not all the conditional effects bits were cleared. Properly clear all conditional effect bits fro...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References6
Snyk
Snyk
added 2026/03/20 8:34 p.m.2 views

Race Condition

Overview org.webjars.npm:effect is a node package that allows you to add effects on images. Affected versions of this package are vulnerable to Race Condition in the MixedScheduler class, where the AsyncLocalStorage context is not properly isolated between concurrent fiber executions. An attacker...

9.1CVSS5.8AI score0.0027EPSS
Exploits1References2
OSV
OSV
added 2026/03/18 4:18 p.m.3 views

GHSA-3VJ8-JMXQ-CGJ5 h3 has a middleware bypass with one gadget

H3 NodeRequestUrl bugs Vulnerable pieces of code : js import H3, serve, defineHandler, getQuery, getHeaders, readBody, defineNodeHandler from "h3"; let app = new H3 const internalOnly = defineHandlerevent, next = const token = event.headers.get"x-internal-key"; if token !==...

7.4CVSS5.9AI score0.00388EPSS
Exploits1References3
Packet Storm News
Packet Storm News
added 2026/03/17 12:0 a.m.2 views

Secure Quantum Communication: Simulation and Analysis of Quantum Key Distribution Protocols

Quantum computing poses significant threats to conventional cryptographic techniques such as RSA and AES, motivating the need for quantum secure communication methods. Quantum Key Distribution QKD offers information theoretic security based on fundamental quantum principles. This paper presents a...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.6 views

EulerOS 2.0 SP10 : curl (EulerOS-SA-2026-1305)

According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : When an OAuth2 bearer token is used for an HTTPS transfer, and that transfer performs a cross-protocol redirect to a second URL that uses an IMAP,...

6.3CVSS5.9AI score0.00611EPSS
Exploits3References5
Fedora
Fedora
added 2026/03/07 12:52 a.m.7 views

[SECURITY] Fedora 42 Update: gimp-3.0.8-5.fc42

GIMP GNU Image Manipulation Program is a powerful image composition and editing program, which can be extremely useful for creating logos and other graphics for web pages. GIMP has many of the tools and filters you would expe ct to find in similar commercial offerings, and some interesting extras...

6.5CVSS5.7AI score0.00485EPSS
Exploits1
Github Security Blog
Github Security Blog
added 2026/03/06 4:43 p.m.24 views

GitHub Copilot CLI Dangerous Shell Expansion Patterns Enable Arbitrary Code Execution

Summary A security vulnerability has been identified in GitHub Copilot CLI's shell tool that could allow arbitrary code execution through crafted bash parameter expansion patterns. An attacker who can influence the commands executed by the agent e.g., via prompt injection through repository files...

7.8CVSS6.3AI score0.00363EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder