F5 BIG-IP 安全漏洞

F5 BIG-IP is an application delivery platform developed by F5 Technologies in the United States. It integrates functions such as network traffic management, application security management, and load balancing. There is a security vulnerability in F5 BIG-IP. This vulnerability stems from virtual...

MAGIQ: A Post-Quantum Multi-Agentic AI Governance System with Provable Security

Our computing ecosystem is being transformed by two emerging paradigms: the increased deployment of agentic AI systems and advancements in quantum computing. With respect to agentic AI systems, one of the most critical problems is creating secure governing architectures that ensure agents follow...

Jailbreak-Zero: A Path to Pareto Optimal Red Teaming for Large Language Models

This paper introduces Jailbreak-Zero, a novel red teaming methodology that shifts the paradigm of Large Language Model LLM safety evaluation from a constrained example-based approach to a more expansive and effective policy-based framework. By leveraging an attack LLM to generate a high volume of...

EUVD-2022-27352

Malicious code in bioql PyPI...

EUVD-2024-2618

Malicious code in bioql PyPI...

EUVD-2024-48006

Malicious code in bioql PyPI...

Built-in Runtime Security for Containers

Security teams struggle with visibility into behaviors inside their running containers. Qualys is today announcing general availability of Container Runtime Security CRS to provide industry-leading visibility for running containers using an approach that is container-engine agnostic and layered...

NetScaler HA sync on AWS fails when using Policy Based Routing (PBR)

HA sync between Primary NetScaler node and Secondary NetScaler node will fail when Policy Based Routing is configured, when NetScaler is hosted on Amazon Web Services AWS...

Establishing Workload Identity for Zero Trust CI/CD: from Secrets to SPIFFE-Based Authentication

CI/CD systems have become privileged automation agents in modern infrastructure, but their identity is still based on secrets or temporary credentials passed between systems. In enterprise environments, these platforms are centralized and shared across teams, often with broad cloud permissions an...

CVE-2024-6437

On affected platforms running Arista EOS with one of the following features configured to redirect IP traffic to a next hop: policy-based routing PBR, BGP Flowspec, or interface traffic policy -- certain IP traffic such as IPv4 packets with IP options may bypass the feature's set nexthop action a...

CVE-2024-6437 On affected platforms running Arista EOS with one of the following features configured to redirect IP traffic to a next hop: policy-based routing (PBR), BGP Flowspec, or interface traffic policy -- certain IP traffic such as IPv4 packets with IP options ma

On affected platforms running Arista EOS with one of the following features configured to redirect IP traffic to a next hop: policy-based routing PBR, BGP Flowspec, or interface traffic policy -- certain IP traffic such as IPv4 packets with IP options may bypass the feature's set nexthop action a...

CVE-2024-6437 On affected platforms running Arista EOS with one of the following features configured to redirect IP traffic to a next hop: policy-based routing (PBR), BGP Flowspec, or interface traffic policy -- certain IP traffic such as IPv4 packets with IP options ma

On affected platforms running Arista EOS with one of the following features configured to redirect IP traffic to a next hop: policy-based routing PBR, BGP Flowspec, or interface traffic policy -- certain IP traffic such as IPv4 packets with IP options may bypass the feature's set nexthop action a...

CVE-2024-6437

CVE-2024-6437 affects Arista EOS when policy-based routing (PBR), BGP Flowspec, or interface traffic policy is configured to redirect traffic to a next hop. The issue causes certain IPv4 packets (e.g., with IP options) to bypass the configured nexthop and be slow-path forwarded by the kernel to t...

PT-2025-3683 · Arista · Arista Eos

Name of the Vulnerable Software and Affected Versions: Arista EOS versions prior to 4.32.1F Description: The issue affects Arista EOS platforms with features like policy-based routing PBR, BGP Flowspec, or interface traffic policy configured to redirect IP traffic to a next hop. Certain IP traffi...

CVE-2024-39690

Capsule is a multi-tenancy and policy-based framework for Kubernetes. In Capsule v0.7.0 and earlier, the tenant-owner can patch any arbitrary namespace that has not been taken over by a tenant i.e., namespaces without the ownerReference field, thereby gaining control of that namespace. Version...

CVE-2024-39690

Summary: CVE-2024-39690 affects Capsule (Kubernetes multi-tenant framework) and describes an authorization bypass where a tenant-owner with the ability to patch a namespace can hijack system namespaces (kube-system, default, capsule-system) if the namespace has not been taken over by a tenant. In...

Red Hat Advanced Cluster Management for Kubernetes 安全漏洞

Red Hat Advanced Cluster Management for Kubernetes is an advanced cluster management platform for Kubernetes from Red Hat, Inc. The platform provides features that offer policy-based governance and extended application lifecycle management. A security vulnerability exists in Red Hat Advanced...

Fortinet Fortigate Policy-based NGFW SSL VPN mode doesn't filter accesses via Bookmarks (FG-IR-22-381)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-22-381 advisory. - A permissive list of allowed inputs vulnerability CWE-183 in FortiGate version 7.2.3 and below, version 7.0.9 and below...

CVE-2022-42469

A permissive list of allowed inputs vulnerability CWE-183 in FortiGate version 7.2.3 and below, version 7.0.9 and below Policy-based NGFW Mode may allow an authenticated SSL-VPN user to bypass the policy via bookmarks in the web portal...

HP Security Manager 安全漏洞

HP Security Manager is an industry-first policy-based solution from Hewlett-Packard HP. It helps improve security, enhance regulatory compliance and reduce risk across imaging and printing teams. A security vulnerability exists in HP Security Manager versions prior to 3.9, which stems from a...