CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Packet Storm News•added 2026/06/09 12:0 a.m.•10 views

Context-Based Adversarial Attacks on AI Code Generators: Vulnerability Analysis and Implications

AI-powered code generation systems have transformed software development but introduce critical inference-time security vulnerabilities. This research presents a systematic investigation of context-based adversarial attacks, where strategically crafted contextual inputs, including comments,...

5.6AI score

RedhatCVE•added 2026/06/05 7:26 p.m.•8 views

CVE-2026-39321

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.8.0-alpha.6 and 8.6.74, he login endpoint response time differs measurably depending on whether the submitted username or email exists in the database. When a user is not found, the...

6.3CVSS5.4AI score0.0023EPSS

Exploits0References1

Packet Storm News•added 2026/06/05 12:0 a.m.•4 views

Demand-Driven Vulnerability Detection for Cloud Security Posture Management: Removing Human Rule Authoring from the Disclosure-To-Protection Critical Path

Cloud Security Posture Management CSPM systems detect known vulnerabilities by maintaining a rule set, distributing it to customers, and evaluating it against periodically-collected asset inventories. To our knowledge, in publicly documented architectures the rule set is environment-agnostic and...

5.4AI score

Packet Storm News•added 2026/06/05 12:0 a.m.•6 views

FDM: A Framework for Decision-Making to Build ML-Based Malware Detection Systems

Selecting appropriate machine learning ML configurations for malware detection is a complex, multi-criteria problem. Model choice, feature engineering, and update mechanisms must jointly satisfy operational constraints that vary across deployment contexts. This paper proposes the Framework for...

5.4AI score

Packet Storm News•added 2026/06/04 12:0 a.m.•15 views

TinyML-Driven Cybersecurity for Autonomous Spacecraft: Latency-Accuracy Analysis for SPARTA RF and Cyber Threat Detection

Autonomous spacecraft require rapid, lightweight, and reliable onboard detection of cyber-RF threats. Using the SPARTA attack model, we analyze the latency-accuracy trade-offs of TinyML-compatible classical models -- Random Forest, Logistic Regression, SVM, and MLP -- for detecting uplink jamming...

5.6AI score

Packet Storm News•added 2026/05/31 12:0 a.m.•8 views

On the Evaluation of Spiking Neural Network Configurations for Network Intrusion Detection

Network intrusion detection is a core component of modern cybersecurity infrastructure, yet the deep learning models that dominate the field are computationally demanding, motivating interest in lightweight alternatives suited to edge and neuromorphic deployment. Spiking Neural Networks SNNs are...

EUVD•added 2026/05/28 9:23 p.m.•11 views

EUVD-2026-33070

TREK is a collaborative travel planner. Prior to 3.0.18, early return on missing user during login flow allowed an attacker to enumerate valid user accounts via response timing discrepancy. When an email address existed in the database, the backend performed a bcrypt password comparison before...

5.3CVSS5.8AI score0.00205EPSS

Vulnrichment•added 2026/05/28 9:23 p.m.•8 views

CVE-2026-45410 Time-based user enumeration in TREK authentication endpoint

5.3CVSS5.8AI score0.00205EPSS

Positive Technologies•added 2026/05/28 12:0 a.m.•13 views

PT-2026-44554

5.3CVSS5.8AI score0.00205EPSS

Exploits0References3

Packet Storm News•added 2026/05/27 12:0 a.m.•12 views

Efficient and Quantum-Safe Internet Key Exchange Protocols for Satellite Communications

This paper studies cryptographic key exchange in satellite communications, which requires specific solutions because the satellite context presents unique challenges, particularly concerning onboard resource constraints and long transmission latency. We address these challenges by considering the...

Ubuntu•added 2026/05/25 4:52 p.m.•20 views

USN-8291-3: Linux kernel (Low Latency) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - SMB network file system; - Netfilter; - iouring subsystem; CVE-2024-35862, CVE-2024-50060, CVE-2026-23274,...

7.8CVSS6.8AI score0.00239EPSS

Ubuntu•added 2026/05/22 1:47 p.m.•11 views

USN-8291-2: Linux kernel (Low Latency) vulnerabilities

7.8CVSS5.9AI score0.00239EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix data race in CPU latency PM QoS request handling The cpulatencyqosadd/remove/updaterequest interfaces lack internal synchronization by design, requiring the caller to ensure thread safety. The current...

5.7AI score0.00162EPSS

GithubExploit•added 2026/05/17 6:52 p.m.•84 views

kv-cache-side-channel-poc

KV Cache Side-Channel: Cross-Tenant Timing Oracle Proof of co...

Packet Storm News•added 2026/05/14 12:0 a.m.•16 views

WARD: Adversarially Robust Defense of Web Agents against Prompt Injections

Web agents can autonomously complete online tasks by interacting with websites, but their exposure to open web environments makes them vulnerable to prompt injection attacks embedded in HTML content or visual interfaces. Existing guard models still suffer from limited generalization to unseen...

Packet Storm News•added 2026/05/11 12:0 a.m.•6 views

Can a Single Message Paralyze the AI Infrastructure? the Rise of AbO-DDoS Attacks through Targeted Mobius Injection

Large Language Model LLM agents have emerged as key intermediaries, orchestrating complex interactions between human users and a wide range of digital services and LLM infrastructures. While prior research has extensively examined the security of LLMs and agents in isolation, the systemic risk of...

5.9AI score

Akamai Blog•added 2026/05/06 5:0 p.m.•9 views

AI Survey: 50% of Organizations Struggle to Maintain Latency at Scale

The Akamai State of AI Inference report captures real data from the field that describes how AI inference is being built and scaled in production today...

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Media: MediTech; vcodec: Cannot set dstbuffer to done when a late decoding error occurs. The core thread will call v4l2m2mbufdone to set the dstbuffer as done for the late architecture. If v4l2m2mbufdoneandjobfinish is called lat...

5.5CVSS5.2AI score0.00143EPSS