Lucene search
K

19 matches found

Packet Storm News
Packet Storm News
added 2025/12/16 12:0 a.m.6 views

UIXPOSE: Mobile Malware Detection Via Intention-Behaviour Discrepancy Analysis

We introduce UIXPOSE, a source-code-agnostic framework that operates on both compiled and open-source apps. This framework applies Intention Behaviour Alignment IBA to mobile malware analysis, aligning UI-inferred intent with runtime semantics. Previous work either infers intent statically, e.g.,...

6.7AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.21 views

EUVD-2021-1451

Malware in sbrugna...

7.5CVSS7.4AI score0.0174EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-13073

Malware in sbrugna...

8.1CVSS8.2AI score0.01003EPSS
Exploits1References2
Packet Storm News
Packet Storm News
added 2025/06/22 12:0 a.m.4 views

VulStamp: Vulnerability Assessment Using Large Language Model

Although modern vulnerability detection tools enable developers to efficiently identify numerous security flaws, indiscriminate remediation efforts often lead to superfluous development expenses. This is particularly true given that a substantial portion of detected vulnerabilities either possess...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/10 12:0 a.m.5 views

SoK: Machine Unlearning for Large Language Models

Large language model LLM unlearning has become a critical topic in machine learning, aiming to eliminate the influence of specific training data or knowledge without retraining the model from scratch. A variety of techniques have been proposed, including Gradient Ascent, model editing, and...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 12:59 p.m.6 views

CVE-2018-20519

An issue was discovered in 74cms v4.2.111. It allows remote authenticated users to read or modify arbitrary resumes by changing a job-search intention, as demonstrated by the index.php?c=Personal=ajaxsavebasic pid parameter...

8.1CVSS6.7AI score0.01003EPSS
Exploits1References1
OSV
OSV
added 2024/03/06 10:53 a.m.26 views

BIT-CONSUL-2021-36213

HashiCorp Consul and Consul Enterprise 1.9.0 through 1.10.0 default deny policy with a single L7 application-aware intention deny action cancels out, causing the intention to incorrectly fail open, allowing L4 traffic. Fixed in 1.9.8 and 1.10.1...

7.5CVSS7.3AI score0.0174EPSS
Exploits0References5
Code423n4
Code423n4
added 2023/09/06 12:0 a.m.13 views

Bond Redemption is lower than intended

Lines of code Vulnerability details Impact Bonds redemption does not correspond to protocol intention leading to lesser ETH redeemed Proof of Concept Once the bond reaches maturity and the user initiates the redemption process by calling "redeem," it's possible for the user to receive a gain that...

7.2AI score
Exploits0
OSV
OSV
added 2021/07/19 9:21 p.m.27 views

GHSA-8H2G-R292-J8XH HashiCorp Consul L7 deny intention results in an allow action

In HashiCorp Consul before 1.10.1 and Consul Enterprise, xds can generate a situation where a single L7 deny intention with a default deny policy results in an allow action...

7.5CVSS7.4AI score0.0174EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2021/07/19 9:21 p.m.78 views

HashiCorp Consul L7 deny intention results in an allow action

In HashiCorp Consul before 1.10.1 and Consul Enterprise, xds can generate a situation where a single L7 deny intention with a default deny policy results in an allow action...

7.5CVSS7.2AI score0.0174EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2021/07/17 6:15 p.m.18 views

CVE-2021-36213

HashiCorp Consul and Consul Enterprise 1.9.0 through 1.10.0 default deny policy with a single L7 application-aware intention deny action cancels out, causing the intention to incorrectly fail open, allowing L4 traffic. Fixed in 1.9.8 and 1.10.1...

7.5CVSS7.4AI score
Exploits0References4
Prion
Prion
added 2021/07/17 6:15 p.m.26 views

Design/Logic Flaw

HashiCorp Consul and Consul Enterprise 1.9.0 through 1.10.0 default deny policy with a single L7 application-aware intention deny action cancels out, causing the intention to incorrectly fail open, allowing L4 traffic. Fixed in 1.9.8 and 1.10.1...

5CVSS7.3AI score0.0174EPSS
Exploits0References4Affected Software1
UbuntuCve
UbuntuCve
added 2021/07/17 6:15 p.m.20 views

CVE-2021-36213

HashiCorp Consul and Consul Enterprise 1.9.0 through 1.10.0 default deny policy with a single L7 application-aware intention deny action cancels out, causing the intention to incorrectly fail open, allowing L4 traffic. Fixed in 1.9.8 and 1.10.1...

7.5CVSS7.1AI score0.0174EPSS
Exploits0References4
CVE
CVE
added 2021/07/17 5:32 p.m.385 views

CVE-2021-36213

HashiCorp Consul and Consul Enterprise versions 1.9.0–1.10.0 are affected by CVE-2021-36213, where a single L7 application-aware deny action under a default-deny policy can cancel the intention and incorrectly allow L4 traffic. The issue is fixed in Consul/Consul Enterprise 1.9.8 and 1.10.1 (upst...

7.5CVSS7.3AI score0.0174EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2021/07/17 5:32 p.m.32 views

CVE-2021-36213

HashiCorp Consul and Consul Enterprise 1.9.0 through 1.10.0 default deny policy with a single L7 application-aware intention deny action cancels out, causing the intention to incorrectly fail open, allowing L4 traffic. Fixed in 1.9.8 and 1.10.1...

7.5CVSS7.3AI score0.0174EPSS
Exploits0
Akamai Blog
Akamai Blog
added 2021/04/13 1:45 p.m.24 views

Taking Action This Earth Month

By: Akamai Earth Month Guest Blog by Kenda Carlson, Senior Manager, WeSpire There's a fascinating human phenomenon often studied in the behavioral science field called the intention-action gap. It's when you have every intention of doing something, but it just doesn't happen. It's when you say yo...

0.2AI score
Exploits0
Akamai Blog
Akamai Blog
added 2021/04/13 4:0 a.m.12 views

Taking Action This Earth Month

There's a fascinating human phenomenon often studied in the behavioral science field called the intention-action gap...

0.9AI score
Exploits0
Prion
Prion
added 2018/12/27 3:29 p.m.17 views

Code injection

An issue was discovered in 74cms v4.2.111. It allows remote authenticated users to read or modify arbitrary resumes by changing a job-search intention, as demonstrated by the index.php?c=Personal&a=ajaxsavebasic pid parameter...

5.5CVSS7.7AI score0.01003EPSS
Exploits1References1Affected Software1
Packet Storm
Packet Storm
added 2017/10/27 12:0 a.m.45 views

Tizen Studio 1.3 Smart Development Bridge Buffer Overflow

Exploit Title: Smart Development Bridge =2.3.2 part of Tizen Studio 1.3 Windows x86/x64 - Buffer Overflow PoC Date: 22.10.17 Exploit Author: Marcin Kopec Vendor Homepage: https://developer.tizen.org/ Software Link: https://developer.tizen.org/development/tizen-studio/download Version: 2.3.0, 2.3....

7.1AI score
Exploits0
Rows per page
Query Builder