Lucene search
K

12181 matches found

EUVD
EUVD
added 2026/05/21 3:49 a.m.11 views

EUVD-2026-31210

In mlflow/mlflow versions up to 3.9.0, the SearchModelVersions REST API endpoint and the mlflowSearchModelVersions GraphQL query lack proper per-model authorization checks when basic authentication is enabled. This allows any authenticated user to enumerate all model versions across all registere...

6.5CVSS6.5AI score0.00441EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/05/21 3:49 a.m.10 views

CVE-2026-2734 Authorization Bypass in SearchModelVersions in mlflow/mlflow

In mlflow/mlflow versions up to 3.9.0, the SearchModelVersions REST API endpoint and the mlflowSearchModelVersions GraphQL query lack proper per-model authorization checks when basic authentication is enabled. This allows any authenticated user to enumerate all model versions across all registere...

6.5CVSS6.5AI score0.00441EPSS
Exploits1References2
CVE
CVE
added 2026/05/21 3:49 a.m.26 views

CVE-2026-2734

Summary : For mlflow/mlflow up to version 3.9.0, the REST endpoint GET /api/2.0/mlflow/model-versions/search and the GraphQL query mlflowSearchModelVersions lack per-model authorization when basic auth is enabled. This results in any authenticated user being able to enumerate all model versions a...

6.5CVSS6.5AI score0.00441EPSS
Exploits1References2Affected Software1
Fedora
Fedora
added 2026/05/21 1:28 a.m.15 views

[SECURITY] Fedora 43 Update: expat-2.8.1-1.fc43

This is expat, the C library for parsing XML, written by James Clark. Expat is a stream oriented XML parser. This means that you register handlers with the parser prior to starting the parse. These handlers are called when the parser discovers the associated structures in the document being parse...

5.8AI score
Exploits0
CNNVD
CNNVD
added 2026/05/21 12:0 a.m.10 views

MLflow 访问控制错误漏洞

MLFlow is an open-source platform that simplifies machine learning development. It includes features for tracking experiments, packaging code into repeatable runs, and sharing and deploying models. Versions of mlflow prior to 3.9.0 contained a access control vulnerability. This vulnerability...

6.5CVSS6.7AI score0.00441EPSS
Exploits1References2
Packet Storm News
Packet Storm News
added 2026/05/21 12:0 a.m.11 views

A First Measurement Study on Authentication Security in Real-World Remote MCP Servers

The Model Context Protocol MCP is emerging as a common interface connecting large language models LLMs with external services. Remote deployments are becoming increasingly important as agents connect to user-linked online services, such as social, productivity, and financial services. In such...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/21 12:0 a.m.10 views

Blind Spots in the Guard: How Domain-Camouflaged Injection Attacks Evade Detection in Multi-Agent LLM Systems

Injection detectors deployed to protect LLM agents are calibrated on static, template-based payloads that announce themselves as override directives. We identify a systematic blind spot: when payloads are generated to mimic the domain vocabulary and authority structures of the target document, wh...

5.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/21 12:0 a.m.16 views

PT-2026-42603

Summary Amazon SageMaker Python SDK is an open-source library for training and deploying machine learning models on Amazon SageMaker. An issue exists where, under certain circumstances, the ModelBuilder/Serve component stores an HMAC signing key in cleartext as a container environment variable,...

8.5CVSS6.2AI score0.00439EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/05/21 12:0 a.m.20 views

PT-2026-42632

Summary lmdeploy hardcodes trust remote code=True in multiple HuggingFace model-loading call sites. The affected code paths are in: text lmdeploy/archs.py lmdeploy/utils.py The vulnerable call sites pass trust remote code=True into HuggingFace Transformers APIs such as AutoConfig.from pretrained,...

7.8CVSS6.7AI score
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/21 12:0 a.m.13 views

PT-2026-42668

Name of the Vulnerable Software and Affected Versions LMDeploy versions 0.12.3 and earlier Description LMDeploy contains an implicit unsafe remote-code load path because it hardcodes the trust remote code=True parameter when fetching models. This configuration overrides the default-secure stance ...

7.8CVSS6.5AI score0.00148EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/05/21 12:0 a.m.21 views

PT-2026-42395

Name of the Vulnerable Software and Affected Versions mlflow/mlflow versions prior to 3.10.0 Description When basic authentication is enabled, the 'SearchModelVersions' REST API endpoint and the 'mlflowSearchModelVersions' GraphQL query lack proper per-model authorization checks. This allows any...

6.5CVSS6.6AI score0.00441EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2026/05/21 12:0 a.m.18 views

PT-2026-42662

Name of the Vulnerable Software and Affected Versions LMDeploy versions 0.12.3 and earlier Description LMDeploy is a toolkit for compressing, deploying, and serving large language models. The software hardcodes trust remote code=True in multiple HuggingFace model-loading call sites, specifically...

7.8CVSS6.2AI score0.00142EPSS
Exploits0References5
Packet Storm News
Packet Storm News
added 2026/05/21 12:0 a.m.8 views

Parser-Free Querying of Security Logs

Security analysts routinely query system logs to detect threats and investigate incidents, but each log source uses its own semi-structured format: logs are cheap to produce, but expensive to use. The standard approach, building per-source parsers to normalize logs into structured schemas, is...

5.9AI score
Exploits0
NVD
NVD
added 2026/05/20 8:16 p.m.16 views

CVE-2026-9126

Use after free in DOM in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS0.00396EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/20 7:12 p.m.15 views

EUVD-2026-31168

Use after free in DOM in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.2AI score0.00396EPSS
Exploits0References2
CVE
CVE
added 2026/05/20 7:12 p.m.25 views

CVE-2026-9126

CVE-2026-9126 describes a use-after-free in DOM in Google Chrome prior to version 148.0.7778.179 . The vulnerability allows a remote attacker to execute arbitrary code within the browser sandbox via a crafted HTML page. The associated metrics indicate a high-impact, (CVSS 3.1) base score of 8.8 w...

8.8CVSS6.2AI score0.00396EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2026/05/20 7:12 p.m.5 views

CVE-2026-9126

Use after free in DOM in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6AI score0.00396EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/20 6:0 p.m.29 views

CVE-2026-47099 TeleJSON < 6.0.0 DOM-based XSS via parse() Function

TeleJSON prior to 6.0.0 contains a DOM-based cross-site scripting vulnerability in the parse function that allows attackers to execute arbitrary JavaScript by delivering a crafted JSON payload containing a malicious constructor-name property value. The custom reviver passes the constructor name...

6.1CVSS0.00358EPSS
Exploits0References3
OSV
OSV
added 2026/05/20 4:1 p.m.6 views

MINI-G267-M938-R6JQ

Bulletin has no description...

5.4CVSS5.7AI score0.00297EPSS
Exploits0
OSV
OSV
added 2026/05/20 4:1 p.m.3 views

MINI-Q84X-5MXH-3VJ2

Bulletin has no description...

9.6CVSS5.7AI score0.00365EPSS
Exploits0
Rows per page
Query Builder