Lucene search
K

320 matches found

Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.10 views

PT-2026-32974

Name of the Vulnerable Software and Affected Versions free5GC versions 4.2.1 and earlier Description An improper path validation issue exists in the UDR service. The endpoint 'GET /nudr-dr/v2/application-data/influenceData/influenceId/subscriptionId' is designed to operate only when the influence...

8.7CVSS6AI score0.00493EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.13 views

PT-2026-32975

Name of the Vulnerable Software and Affected Versions free5GC UDR service versions prior to 4.2.1 Description An improper path validation issue exists in the UDR service. The handler for creating or updating Traffic Influence Subscriptions checks if the influenceId path segment equals...

8.7CVSS6AI score0.00427EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.8 views

PT-2026-32973

Name of the Vulnerable Software and Affected Versions free5GC versions 1.4.2 and earlier Description An improper path validation issue exists in the UDR service. An unauthenticated attacker with access to the 5G Service Based Interface can delete arbitrary Traffic Influence Subscriptions by...

8.7CVSS6.1AI score0.0038EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2026/04/01 7:45 p.m.2 views

CVE-2026-34747

Payload is a free and open source headless content management system. Prior to version 3.79.1, certain request inputs were not properly validated. An attacker could craft requests that influence SQL query execution, potentially exposing or modifying data in collections. This issue has been patche...

8.5CVSS5.8AI score0.00317EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/26 6:31 p.m.4 views

Langflow has Authenticated Code Execution in Agentic Assistant Validation

Description 1. Summary The Agentic Assistant feature in Langflow executes LLM-generated Python code during its validation phase. Although this phase appears intended to validate generated component code, the implementation reaches dynamic execution sinks and instantiates the generated class...

9.9CVSS6.7AI score0.01426EPSS
Exploits1References19Affected Software1
Schneier on Security
Schneier on Security
added 2026/03/26 11:6 a.m.8 views

As the US Midterms Approach, AI Is Going to Emerge as a Key Issue Concerning Voters

In December, the Trump administration signed an executive order that neutered states' ability to regulate AI by ordering his administration to both sue and withhold funds from states that try to do so. This action pointedly supported industry lobbyists keen to avoid any constraints and consequenc...

5.8AI score
Exploits0
CVE
CVE
added 2026/03/19 10:6 p.m.11 views

CVE-2026-32015

OpenClaw versions 2026.1.21 up to 2026.2.19 are affected by a path hijacking vulnerability in tools.exec.safeBins that lets an attacker influence gateway process PATH or launch environment to execute trojan binaries with allowlisted names (e.g., jq). The root cause is improper PATH resolution tha...

7.8CVSS5.9AI score0.00128EPSS
Exploits0References3Affected Software1
Schneier on Security
Schneier on Security
added 2026/03/11 11:4 a.m.7 views

Canada Needs Nationalized, Public AI

Canada has a choice to make about its artificial intelligence future. The Carney administration is investing $2-billion over five years in its Sovereign AI Compute Strategy. Will any value generated by "sovereign AI" be captured in Canada, making a difference in the lives of Canadians, or is this...

5.8AI score
Exploits0
OSV
OSV
added 2026/03/02 9:55 p.m.4 views

GHSA-6F6J-WX9W-FF4J CpenClaw's ACPX Windows wrapper shell fallback allowed cwd injection in specific paths

Summary On Windows ACPX paths, wrapper resolution for .cmd/.bat could fall back to shell execution in ways that allowed cwd influence to alter execution behavior. Impact In affected Windows ACPX configurations, this could enable command execution integrity loss through cwd-influenced wrapper...

9.3CVSS6.1AI score0.00241EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/02/20 4:15 p.m.4 views

CVE-2026-24790

The underlying PLC of the device can be remotely influenced, without proper safeguards or authentication...

8.2CVSS5.4AI score0.00449EPSS
Exploits0References4
Schneier on Security
Schneier on Security
added 2025/12/15 12:2 p.m.6 views

Against the Federal Moratorium on State-Level Regulation of AI

Cast your mind back to May of this year: Congress was in the throes of debate over the massive budget bill. Amidst the many seismic provisions, Senator Ted Cruz dropped a ticking time bomb of tech policy: a ten-year moratorium on the ability of states to regulate artificial intelligence. To many,...

6.8AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2025/12/02 7:10 p.m.4 views

Your Data Might Determine How Much You Pay for Eggs

A newly enacted New York law requires retailers to say whether your data influences the price of basic goods like a dozen eggs or toilet paper, but not how...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/11/15 12:0 a.m.5 views

Exploring AI in Steganography and Steganalysis: Trends, Clusters, and Sustainable Development Potential

Steganography and steganalysis are strongly related subjects of information security. Over the past decade, many powerful and efficient artificial intelligence AI - driven techniques have been designed and presented during research into steganography as well as steganalysis. This study presents a...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 7:18 p.m.2 views

Malicious code in hitachi-poke57 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7cd985f7f09e39eb34955b27b1fa599790c0c7f5c5ab5eeda540dd3eb1d5902a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/11 2:29 a.m.1 views

Malicious code in putra-kupang79-breki (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 744b497e36bd18f9ca6aa4a65aea9bb5c622c367d2d75c24e7ebb91dc0fce6ce This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
Krebs on Security
Krebs on Security
added 2025/11/09 6:14 p.m.8 views

Drilling Down on Uncle Sam’s Proposed TP-Link Ban

The U.S. government is reportedly preparing to ban the sale of wireless routers and other networking gear from TP-Link Systems , a tech company that currently enjoys an estimated 50% market share among home users and small businesses. Experts say while the proposed ban may have more to do with...

6.9AI score
Exploits0
HackRead
HackRead
added 2025/10/29 11:25 a.m.5 views

How High-Tech Finance Companies Turn Innovation Into Influence

Your main rival in the fintech space just raised $20 million in a very successful Series B funding…...

7AI score
Exploits0
HackRead
HackRead
added 2025/10/08 11:28 a.m.6 views

OpenAI Finds Growing Exploitation of AI Tools by Foreign Threat Groups

OpenAI's new report warns hackers are combining multiple AI tools for cyberattacks, scams, and influence ops linked to China, Russia, and North Korea...

7.1AI score
Exploits0
Schneier on Security
Schneier on Security
added 2025/10/07 11:4 a.m.4 views

AI-Enabled Influence Operation Against Iran

Citizen Lab has uncovered a coordinated AI-enabled influence operation against the Iranian government, probably conducted by Israel. Key Findings A coordinated network of more than 50 inauthentic X profiles is conducting an AI-enabled influence operation. The network, which we refer to as...

7AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-8166

Malware in sbrugna...

6.5CVSS6.5AI score0.00579EPSS
Exploits0References4
Rows per page
Query Builder