Lucene search
K

10079 matches found

CNNVD
CNNVD
added 2025/06/26 12:0 a.m.2 views

WIFISKY 7-layer Flow Control Router 安全漏洞

WIFISKY 7-layer Flow Control Router is a router from WIFISKY. A security vulnerability exists in the WIFISKY 7-layer Flow Control Router, which is a result of a command injection attack due to the misuse of parameter t in the confirm.php interface...

9.4CVSS7.3AI score0.04597EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/06/26 12:0 a.m.2 views

PT-2025-26993

Name of the Vulnerable Software and Affected Versions: WIFISKY 7-layer Flow Control Router affected versions not specified Description: A remote command injection issue exists in the confirm.php interface of the WIFISKY 7-layer Flow Control Router. This is due to insufficient input validation,...

9.4CVSS7.7AI score0.04597EPSS
Exploits0References12
Packet Storm News
Packet Storm News
added 2025/06/25 12:0 a.m.2 views

Universal and Efficient Detection of Adversarial Data through Nonuniform Impact on Network Layers

Deep Neural Networks DNNs are notoriously vulnerable to adversarial input designs with limited noise budgets. While numerous successful attacks with subtle modifications to original input have been proposed, defense techniques against these attacks are relatively understudied. Existing defense...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/25 12:0 a.m.1 views

Living Long Doing Pentests

Whitepaper called Living Long Doing Pentests. It discusses basic LLDP protocol fuzzing and usage from a pentester's point of view...

7AI score
Exploits0
CNNVD
CNNVD
added 2025/06/25 12:0 a.m.4 views

iterate Cyberduck和iterate Mountain Duck 安全漏洞

iterate Cyberduck and iterate Mountain Duck are both open source file transfer clients from iterate. A security vulnerability exists in iterate Cyberduck 9.1.6 and earlier and iterate Mountain Duck 4.17.5 and earlier, which stems from improper handling of TLS certificate fixing and could lead to...

8CVSS6.4AI score0.00164EPSS
Exploits0References3
OSV
OSV
added 2025/06/24 2:15 p.m.5 views

UBUNTU-CVE-2025-6032

A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack...

8.3CVSS6.3AI score0.00397EPSS
Exploits0References4
OSV
OSV
added 2025/06/24 1:16 p.m.17 views

USN-7594-1 linux, linux-gcp, linux-raspi, linux-realtime vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - PowerPC architecture; - RISC-V architecture; - User-Mode Linux UML; - x...

8.8CVSS6.5AI score0.23278EPSS
Exploits0References333
Packet Storm News
Packet Storm News
added 2025/06/23 12:0 a.m.5 views

Physical Layer Challenge-Response Authentication between Ambient Backscatter Devices

Ambient backscatter communication AmBC has become an integral part of ubiquitous Internet of Things IoT applications due to its energy-harvesting capabilities and ultra-low-power consumption. However, the open wireless environment exposes AmBC systems to various attacks, and existing authenticati...

6.8AI score
Exploits0
CNNVD
CNNVD
added 2025/06/23 12:0 a.m.3 views

Texas Instruments LP-CC2652RB SimpleLink CC13XX CC26XX SDK 安全漏洞

Texas Instruments LP-CC2652RB SimpleLink CC13XX CC26XX SDK is a software development kit from Texas Instruments, USA. A security vulnerability exists in Texas Instruments LP-CC2652RB SimpleLink CC13XX CC26XX SDK version 7.41.00.17, which originates from a denial of service due to the sending of a...

7.5CVSS6.7AI score0.00464EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.5 views

The vulnerability of the `easy_uci_set_option_string_0()` function in the `/cgi-bin/lighttpd.cgi` file of the LB-LINK BL-AC3600 router’s microprogramming system allows a hacker to execute arbitrary code.

The vulnerability of the easyucisetoptionstring0 function in the /cgi-bin/lighttpd.cgi file of the LB-LINK BL-AC3600 router microprogramming system is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability could allow an attacker operating...

6.5CVSS6.9AI score0.01921EPSS
Exploits0References4Affected Software1
Packet Storm News
Packet Storm News
added 2025/06/22 12:0 a.m.4 views

OSI Stack Redesign for Quantum Networks: Requirements, Technologies, Challenges, and Future Directions

Quantum communication is poised to become a foundational element of next-generation networking, offering transformative capabilities in security, entanglement-based connectivity, and computational offloading. However, the classical OSI model-designed for deterministic and error-tolerant...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/22 12:0 a.m.5 views

LURK-T: Limited Use of Remote Keys with Added Trust in TLS 1.3

In many web applications, such as Content Delivery Networks CDNs, TLS credentials are shared, e.g., between the website's TLS origin server and the CDN's edge servers, which can be distributed around the globe. To enhance the security and trust for TLS 1.3 in such scenarios, we propose LURK-T, a...

7.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/22 12:0 a.m.2 views

Optimizing Resource Allocation and Energy Efficiency in Federated Fog Computing for IoT

Address Resolution Protocol ARP spoofing attacks severely threaten Internet of Things IoT networks by allowing attackers to intercept, modify, or block communications. Traditional detection methods are insufficient due to high false positives and poor adaptability. This research proposes a...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/22 12:0 a.m.6 views

NAP-Tuning: Neural Augmented Prompt Tuning for Adversarially Robust Vision-Language Models

Vision-Language Models VLMs such as CLIP have demonstrated remarkable capabilities in understanding relationships between visual and textual data through joint embedding spaces. Despite their effectiveness, these models remain vulnerable to adversarial attacks, particularly in the image modality,...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/21 12:0 a.m.2 views

Optimistic MEV in Ethereum Layer 2s: Why Blockspace Is Always in Demand

Layer 2 rollups are rapidly absorbing DeFi activity, securing over $40 billion and accounting for nearly half of Ethereum's DEX volume by Q1 2025, yet their MEV dynamics remain understudied. We address this gap by defining and quantifying optimistic MEV, a form of speculative, on-chain cyclic...

7.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/21 12:0 a.m.4 views

Movable Antennas Meet Low-Altitude Wireless Networks: Fundamentals, Opportunities, and Future Directions

With the rapid development of low-altitude applications, there is an increasing demand for low-altitude wireless networks LAWNs to simultaneously achieve high-rate communication, precise sensing, and reliable control in the low-altitude airspace. In this paper, we first present a typical system...

6.6AI score
Exploits0
Cvelist
Cvelist
added 2025/06/19 2:24 p.m.9 views

CVE-2025-48886 hydra-node dangerously assumes L1 event finality and does not consider failed transactions

Hydra is a layer-two scalability solution for Cardano. Prior to version 0.22.0, the process assumes L1 event finality and does not consider failed transactions. Currently, Cardano L1 is monitored for certain events which are necessary for state progression. At the moment, Hydra considers those...

4.8CVSS0.00246EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/06/19 2:24 p.m.5 views

CVE-2025-48886 hydra-node dangerously assumes L1 event finality and does not consider failed transactions

Hydra is a layer-two scalability solution for Cardano. Prior to version 0.22.0, the process assumes L1 event finality and does not consider failed transactions. Currently, Cardano L1 is monitored for certain events which are necessary for state progression. At the moment, Hydra considers those...

4.8CVSS7AI score0.00246EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/06/19 12:0 a.m.4 views

Hydra 安全漏洞

Hydra is a Nix open source continuous integration service based on the Nix project. A security vulnerability exists in versions prior to Hydra 0.22.0 that stems from a failed transaction on Cardano L1 that was not considered and could lead to a reorganization attack...

4.8CVSS6.4AI score0.00246EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/06/19 12:0 a.m.5 views

Probing the Robustness of Large Language Models Safety to Latent Perturbations

Safety alignment is a key requirement for building reliable Artificial General Intelligence. Despite significant advances in safety alignment, we observe that minor latent shifts can still trigger unsafe responses in aligned models. We argue that this stems from the shallow nature of existing...

6.9AI score
Exploits0
Rows per page
Query Builder