Lucene search
K

42 matches found

HackRead
HackRead
added 2026/03/04 11:58 a.m.10 views

Car Tyre Sensors Can Be Used to Track Drivers Without Their Knowledge

New research from IMDEA Networks reveals how unencrypted signals from tyre pressure sensors in brands like Toyota and Mercedes can be used for covert vehicle tracking. Learn how these low-cost systems can map out your daily routines and why current regulations fail to protect driver privacy...

5.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/02/27 4:13 a.m.7 views

CVE-2026-27967

Zed, a code editor, has a symlink escape vulnerability in versions prior to 0.225.9 in Agent file tools readfile, editfile. It allows reading and writing files outside the project directory when a project contains symbolic links pointing to external paths. This bypasses the intended workspace...

7.1CVSS5.5AI score0.00243EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/02/25 11:33 p.m.6 views

CVE-2026-27967 Symlink Escape in Agent File Tools

Zed, a code editor, has a symlink escape vulnerability in versions prior to 0.225.9 in Agent file tools readfile, editfile. It allows reading and writing files outside the project directory when a project contains symbolic links pointing to external paths. This bypasses the intended workspace...

7.1CVSS6AI score0.00243EPSS
Exploits1References1
EUVD
EUVD
added 2026/02/25 11:33 p.m.7 views

EUVD-2026-8777

Zed, a code editor, has a symlink escape vulnerability in versions prior to 0.225.9 in Agent file tools readfile, editfile. It allows reading and writing files outside the project directory when a project contains symbolic links pointing to external paths. This bypasses the intended workspace...

7.1CVSS5.5AI score0.00243EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/02/25 11:33 p.m.5 views

CVE-2026-27967

Zed, a code editor, has a symlink escape vulnerability in versions prior to 0.225.9 in Agent file tools readfile, editfile. It allows reading and writing files outside the project directory when a project contains symbolic links pointing to external paths. This bypasses the intended workspace...

7.1CVSS5.5AI score0.00243EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/02/25 11:33 p.m.13 views

CVE-2026-27967

CVE-2026-27967 affects Zed code editor before 0.225.9. A symlink escape in Agent file tools (read_file, edit_file) lets reading/writing files outside the project directory when a project contains external symlinks, bypassing workspace boundaries and privacy protections (file_scan_exclusions, priv...

7.1CVSS5.5AI score0.00243EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/02/25 11:33 p.m.18 views

CVE-2026-27967 Symlink Escape in Agent File Tools

Zed, a code editor, has a symlink escape vulnerability in versions prior to 0.225.9 in Agent file tools readfile, editfile. It allows reading and writing files outside the project directory when a project contains symbolic links pointing to external paths. This bypasses the intended workspace...

7.1CVSS0.00243EPSS
Exploits1References1
OSV
OSV
added 2026/02/25 11:33 p.m.8 views

CVE-2026-27967 Symlink Escape in Agent File Tools

Zed, a code editor, has a symlink escape vulnerability in versions prior to 0.225.9 in Agent file tools readfile, editfile. It allows reading and writing files outside the project directory when a project contains symbolic links pointing to external paths. This bypasses the intended workspace...

7.1CVSS5.7AI score0.00243EPSS
Exploits1References3
Malwarebytes
Malwarebytes
added 2026/01/09 12:26 p.m.5 views

Are we ready for ChatGPT Health?

How comfortable are you with sharing your medical history with an AI? I’m certainly not. OpenAI’s announcement about its new ChatGPT Health program prompted discussions about data privacy and how the company plans to keep the information users submit safe. ChatGPT Health is a dedicated “health...

6.3AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-52277

Malicious code in bioql PyPI...

5.3CVSS5.7AI score0.02226EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-15920

Malicious code in bioql PyPI...

7.7AI score0.00161EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/08/05 12:0 a.m.3 views

Electron Capture 安全漏洞

Electron Capture is a window capture software by Steve Seguin Personal Developer. A security vulnerability exists in Electron Capture 2.19.1 and earlier versions, which stems from a vulnerability that allows bypassing macOS TCC privacy protections and could lead to arbitrary Node.js code executio...

7.8CVSS7.3AI score0.00214EPSS
Exploits1References4
Packet Storm News
Packet Storm News
added 2025/08/04 12:0 a.m.6 views

Thwart Me If You Can: an Empirical Analysis of Android Platform Armoring against Stalkerware

Stalkerware is a serious threat to individuals' privacy that is receiving increased attention from the security and privacy research communities. Existing works have largely focused on studying leading stalkerware apps, dual-purpose apps, monetization of stalkerware, or the experience of survivor...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/26 12:0 a.m.2 views

Balancing Privacy and Utility in Correlated Data: a Study of Bayesian Differential Privacy

Privacy risks in differentially private DP systems increase significantly when data is correlated, as standard DP metrics often underestimate the resulting privacy leakage, leaving sensitive information vulnerable. Given the ubiquity of dependencies in real-world databases, this oversight poses a...

6.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2025/06/09 10:54 a.m.8 views

New Way to Covertly Track Android Users

Researchers have discovered a new way to covertly track Android users. Both Meta and Yandex were using it, but have suddenly stopped now that they have been caught. The details are interesting, and worth reading in detail: Tracking code that Meta and Russia-based Yandex embed into millions of...

7.4AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 1:18 a.m.7 views

CVE-2022-30334

Brave before 1.34, when a Private Window with Tor Connectivity is used, leaks .onion URLs in Referer and Origin headers. NOTE: although this was fixed by Brave, the Brave documentation still advises "Note that Private Windows with Tor Connectivity in Brave are just regular private windows that us...

5.3CVSS7AI score0.02226EPSS
Exploits1References1
Malwarebytes
Malwarebytes
added 2024/09/17 12:54 p.m.11 views

iOS 18 is out. Here are the new privacy and security features

On September 16, 2024, Apple released iOS 18. Besides a lot of exciting new features, iOS 18 comes with some privacy and security enhancements. One of the most promising new features is the new Passwords app. Built on the foundation of Apple's password management system Keychain, Passwords makes ...

6.9AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2022/06/18 1:0 p.m.9 views

An Alleged Russian Spy Was Busted Trying to Intern at The Hague

Plus: Firefox adds new privacy protections, a big Intel and AMD chip flaw, and more of the week’s top security news...

1.6AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/03/02 4:48 p.m.19 views

Biden wants stronger privacy protections, no targeted ads for children

On March 1, US President Joe Biden gave his first State of the Union Address SOTU speech to Congress. In it, Biden highlighted the dire need to get help for teens with mental health issues. He demanded tech companies implement more robust privacy protections for kids and teens using their online...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2021/05/31 12:13 p.m.150 views

Your Amazon Devices to Automatically Share Your Wi-Fi With Neighbors

Starting June 8, Amazon will automatically enable a feature on its family of hardware devices, including Echo speakers, Ring Video Doorbells, Ring Floodlight Cams, and Ring Spotlight Cams, that will share a small part of your Internet bandwidth with nearby neighbors — unless you choose to opt-out...

6.6AI score
Exploits0
Rows per page
Query Builder