729 matches found
The Role of Learning in Attacking Intrusion Detection Systems
Recent work on network attacks have demonstrated that ML-based network intrusion detection systems NIDS can be evaded with adversarial perturbations. However, these attacks rely on complex optimizations that have large computational overheads, making them impractical in many real-world settings. ...
ACORN-IDS: Adaptive Continual Novelty Detection for Intrusion Detection Systems
Intrusion Detection Systems IDS must maintain reliable detection performance under rapidly evolving benign traffic patterns and the continual emergence of cyberattacks, including zero-day threats with no labeled data available. However, most machine learning-based IDS approaches either assume...
Stealth and Evasion in Rogue AP Attacks: An Analysis of Modern Detection and Bypass Techniques
Wireless networks act as the backbone of modern digital connectivity, making them a primary target for cyber adversaries. Rogue Access Point attacks, specifically the Evil Twin variant, enable attackers to clone legitimate wireless network identifiers to deceive users into connecting. Once a...
DDoS Attacks in Cloud Computing: Detection and Prevention
DDoS attacks are one of the most prevalent and harmful cybersecurity threats faced by organizations and individuals today. In recent years, the complexity and frequency of DDoS attacks have increased significantly, making it challenging to detect and mitigate them effectively. The study analyzes...
Adversarial Sample Generation for Anomaly Detection in Industrial Control Systems
Machine learning ML-based intrusion detection systems IDS are vulnerable to adversarial attacks. It is crucial for an IDS to learn to recognize adversarial examples before malicious entities exploit them. In this paper, we generated adversarial samples using the Jacobian Saliency Map Attack JSMA...
Riding the AI Waves: The Rise of Artificial Intelligence to Combat Cyber Threats
In nearly every segment of our lives, AI artificial intelligence now makes a significant impact: It can deliver better healthcare diagnoses and treatments; detect and reduce the risk of financial fraud; improve inventory management; and serve up the right recommendation for a streaming movie on...
BD Alaris PCU (Update A)
1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Becton, Dickinson and Company BD Equipment: Alaris PCU Vulnerability: Uncontrolled Resource Consumption 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled...
Microsoft Windows Remote Desktop Web Access CVE-2020-0637 Information Disclosure Vulnerability
Description Microsoft Windows Remote Desktop Web Access is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows Server 2008 R2 for x64-based Systems SP1...
Microsoft Windows CryptoAPI CVE-2020-0601 Spoofing Vulnerability
Description Microsoft Windows is prone to a security vulnerability that may allow attackers to conduct spoofing attacks. An attacker can exploit this issue to conduct spoofing attacks and perform unauthorized actions; other attacks are also possible. Technologies Affected Microsoft Windows 10...
Oracle Enterprise Manager for Fusion Middleware CVE-2020-2614 Remote Security Vulnerability
Description Oracle Enterprise Manager for Fusion Middleware is prone to a remote security vulnerability. The vulnerability can be exploited over 'HTTP' protocol. The 'APM Mesh' component is affected. This vulnerability affects the following supported versions: 13.2, 13.3 Technologies Affected...
Oracle Reports Developer Multiple Remote Security Vulnerabilities
Description Oracle Reports Developer is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Security and Authentication' component is affected. These vulnerabilities affect the following supported versions: 12.2.1.3.0, 12.2.1.4....
Oracle PeopleSoft Enterprise HCM Human Resources CVE-2020-2561 Remote Security Vulnerability
Description Oracle PeopleSoft Enterprise HCM Human Resources is prone to a remote security vulnerability. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Company Dir / Org Chart Viewer' component is affected. These vulnerabilities affect the following supported versions: 9.2...
Oracle E-Business Suite CVE-2020-2666 Remote Security Vulnerability
Description Oracle E-Business Suite is prone to a remote security vulnerability in 'Oracle Applications Framework' product. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Attachments / File Upload' component is affected. This vulnerability affects the following supported...
Microsoft Windows Graphics Components CVE-2020-0607 Information Disclosure Vulnerability
Description Microsoft Windows is prone to a information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 160...
Oracle Database Server cpujan2020 Multiple Remote Security Vulnerabilities
Description Oracle Database Server is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over the multiple protocols. The 'Core RDBMS' component is affected. These vulnerabilities affect the following supported versions: 12.1.0.2, 12.2.0.1, 18c and 19c...
Oracle FLEXCUBE Universal Banking cpujan2020 Multiple Security Vulnerabilities
Description Oracle FLEXCUBE Universal Banking is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Infrastructure' component is affected. These vulnerabilities affect the following supported versions: 12.0.1 through 12.4.0, 14.0.0...
Oracle FLEXCUBE Investor Servicing cpujan2020 Multiple Security Vulnerabilities
Description Oracle FLEXCUBE Investor Servicing is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Infrastructure' sub component is affected. These vulnerabilities affect the following supported versions: 12.1.0 through 12.4.0, 14.0...
Oracle Banking Payments cpujan2020 Multiple Security Vulnerabilities
Description Oracle Banking Payments is prone to multiple security vulnerabilities. The vulnerability can be exploited over the 'HTTP' protocol. The 'Payments Core' component is affected. These vulnerabilities affect the following supported versions: 14.1.0 through 14.3.0 Technologies Affected...
Oracle MySQL Server cpujan2020 Multiple Security Vulnerabilities
Description Oracle MySQL Server is prone to multiple security vulnerabilities. These vulnerabilities can be exploited over 'MySQL Protocol' protocol. The 'Server: Optimizer', 'Server: Parser', 'Server: DML', and 'Server: Information Schema' components are affected. These vulnerabilities affect th...
Oracle AutoVue CVE-2020-2592 Remote Security Vulnerability
Description Oracle AutoVue is prone to a remote security vulnerability. The vulnerability can be exploited over 'HTTP' protocol. The 'Security' sub component is affected. This vulnerability affects the following supported versions: 12.0.2 Technologies Affected Oracle AutoVue 12.0.2 Recommendation...