Agentic Misalignment: How LLMs Could Be Insider Threats

We stress-tested 16 leading models from multiple developers in hypothetical corporate environments to identify potentially risky agentic behaviors before they cause real harm. In the scenarios, we allowed models to autonomously send emails and access sensitive information. They were assigned only...

CVE-2024-33892

CVE-2024-33892 concerns an Insecure Permissions vulnerability in HMS Cosy+ devices. Affected firmware ranges are 21.x below 21.2s10 and 22.x below 22.1s3, which allow information leakage via cookies. The issue is fixed in firmware versions 21.2s10 and 22.1s3. Connected documents from Red Hat, NVD...

CVE-2024-2049 Server-Side Request Forgery (SSRF)

Server-Side Request Forgery SSRF in Citrix SD-WAN Standard/Premium Editions on or after 11.4.0 and before 11.4.4.46 allows an attacker to disclose limited information from the appliance via Access to management IP...

RATELIMITED: information disclosure which leak the apache version

Hello ratelimited team ! I have found a information disclosure which leak the apache version Link : https://social.ratelimited.me/manual/en/index.html Impact Leaking the http apache server version...