312 matches found
EUVD-2022-52750
Malicious code in bioql PyPI...
EUVD-2022-0562
Malicious code in bioql PyPI...
EUVD-2025-22951
Malicious code in bioql PyPI...
Introducing Microsoft Marketplace — Thousands of solutions. Millions of customers. One Marketplace.
A new breed of industry-leading company is taking shape — Frontier Firms. These organizations blend human ambition with AI-powered technology to reshape how innovation is scaled, work is orchestrated and value is created. They’re accelerating AI transformation to enrich employee experiences,...
Cindy Cohn Is Leaving the EFF, but Not the Fight for Digital Rights
After 25 years at the Electronic Frontier Foundation, Cindy Cohn is stepping down as executive director. In a WIRED interview, she reflects on encryption, AI, and why she’s not ready to quit the battle...
🕵️ Webinar: Discover and Control Shadow AI Agents in Your Enterprise Before Hackers Do
Do you know how many AI agents are running inside your business right now? If the answer is "not sure," you're not alone—and that's exactly the concern. Across industries, AI agents are being set up every day. Sometimes by IT, but often by business units moving fast to get results. That means...
Malicious code in sherlock-frontier-client (npm)
The package sherlock-frontier-client was found to contain malicious code...
MAL-2025-33092 Malicious code in sherlock-frontier-client (npm)
The package sherlock-frontier-client was found to contain malicious code...
“The worst thing” for online rights: An age-restricted grey web (Lock and Code S06E16)
This week on the Lock and Code podcast … The internet is cracking apart. It’s exactly what some politicians want. In June, a Texas law that requires age verification on certain websites withstood a legal challenge brought all the way to the US Supreme Court. It could be a blueprint for how the...
FUJIFILM FRONTIER DX400W 安全漏洞
FUJIFILM FRONTIER DX400W is a compact photo inkjet printer from Fujifilm FUJIFILM Japan. A security vulnerability exists in the FUJIFILM FRONTIER DX400W that stems from the initial administrator password being guessable, which could result in elevated privileges...
CVE-2025-54427
Polkadot Frontier is an Ethereum and EVM compatibility layer for Polkadot and Substrate. The extrinsic notemingaspricetarget is an inherent extrinsic, meaning only the block producer can call it. To ensure correctness, the ProvideInherent trait should be implemented for each inherent, which...
CVE-2025-54429
Polkadot Frontier is an Ethereum and EVM compatibility layer for Polkadot and Substrate. There are various account address types in Frontier, e.g. precompiled contracts, smart contracts, and externally owned accounts. Some EVM mechanisms should be unreachable by certain types of accounts for...
CVE-2025-54426
Polkadot Frontier is an Ethereum and EVM compatibility layer for Polkadot and Substrate. In versions prior to commit 36f70d1, the Curve25519Add and Curve25519ScalarMul precompiles incorrectly handle invalid Ristretto point representations. Instead of returning an error, they silently treat invali...
CVE-2025-54429
Polkadot Frontier is an Ethereum and EVM compatibility layer for Polkadot and Substrate. There are various account address types in Frontier, e.g. precompiled contracts, smart contracts, and externally owned accounts. Some EVM mechanisms should be unreachable by certain types of accounts for...
CVE-2025-54426
Polkadot Frontier is an Ethereum and EVM compatibility layer for Polkadot and Substrate. In versions prior to commit 36f70d1, the Curve25519Add and Curve25519ScalarMul precompiles incorrectly handle invalid Ristretto point representations. Instead of returning an error, they silently treat invali...
CVE-2025-54429 Polkadot Frontier's constructing smart contract can bypass precompile address bounding
Polkadot Frontier is an Ethereum and EVM compatibility layer for Polkadot and Substrate. There are various account address types in Frontier, e.g. precompiled contracts, smart contracts, and externally owned accounts. Some EVM mechanisms should be unreachable by certain types of accounts for...
CVE-2025-54429 Polkadot Frontier's constructing smart contract can bypass precompile address bounding
Polkadot Frontier is an Ethereum and EVM compatibility layer for Polkadot and Substrate. There are various account address types in Frontier, e.g. precompiled contracts, smart contracts, and externally owned accounts. Some EVM mechanisms should be unreachable by certain types of accounts for...
CVE-2025-54429
CVE-2025-54429 concerns Polkadot Frontier’s CallableByContract addressing logic, where precompile calls could be misclassified due to treating contract addresses under CREATE/CREATE2 as AddressType::EOA instead of AddressType::Contract. This misclassification affects custom precompile implementat...
CVE-2025-54429 Polkadot Frontier's constructing smart contract can bypass precompile address bounding
Polkadot Frontier is an Ethereum and EVM compatibility layer for Polkadot and Substrate. There are various account address types in Frontier, e.g. precompiled contracts, smart contracts, and externally owned accounts. Some EVM mechanisms should be unreachable by certain types of accounts for...
CVE-2025-54427 Polkadot Frontier contains missing `check_inherent` for `note_min_gas_price_target` inflates gas price
Polkadot Frontier is an Ethereum and EVM compatibility layer for Polkadot and Substrate. The extrinsic notemingaspricetarget is an inherent extrinsic, meaning only the block producer can call it. To ensure correctness, the ProvideInherent trait should be implemented for each inherent, which...