Lucene search
+L

144 matches found

The Hacker News
The Hacker News
added 2025/10/07 3:18 p.m.9 views

Google's New AI Doesn't Just Find Vulnerabilities — It Rewrites Code to Patch Them

Google's DeepMind division on Monday announced an artificial intelligence AI-powered agent called CodeMender that automatically detects, patches, and rewrites vulnerable code to prevent future exploits. The efforts add to the company's ongoing efforts to improve AI-powered vulnerability discovery...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-24733

Malicious code in bioql PyPI...

7.8CVSS7.2AI score0.00294EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-16335

Malicious code in bioql PyPI...

8.4CVSS6.4AI score0.00105EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-26774

Malicious code in bioql PyPI...

7.8CVSS6.4AI score0.00066EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/09/23 12:0 a.m.23 views

LLM-Based Vulnerability Discovery through the Lens of Code Metrics

Large language models LLMs excel in many tasks of software engineering, yet progress in leveraging them for vulnerability discovery has stalled in recent years. To understand this phenomenon, we investigate LLMs through the lens of classic code metrics. Surprisingly, we find that a classifier...

7.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/09/07 12:0 a.m.5 views

ALPHA: LLM-Enabled Active Learning for Human-Free Network Anomaly Detection

Network log data analysis plays a critical role in detecting security threats and operational anomalies. Traditional log analysis methods for anomaly detection and root cause analysis rely heavily on expert knowledge or fully supervised learning models, both of which require extensive labeled dat...

7AI score
Exploits0
CVE
CVE
added 2025/09/02 12:0 a.m.22 views

CVE-2025-54599

The CVE-2025-54599 entry concerns Bevy Event service versions through 2025-07-22 (used for eBay Seller Events). Affected component is the SSO configuration handling that allows account takeover when a victim changes the configured email address. The root cause is a misconfiguration of SSO, enabli...

7.5CVSS6.4AI score0.00388EPSS
Exploits1References3Affected Software1
Packet Storm News
Packet Storm News
added 2025/06/22 12:0 a.m.7 views

InfoFlood: Jailbreaking Large Language Models with Information Overload

Large Language Models LLMs have demonstrated remarkable capabilities across various domains. However, their potential to generate harmful responses has raised significant societal and regulatory concerns, especially when manipulated by adversarial techniques known as "jailbreak" attacks. Existing...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/10 12:0 a.m.5 views

Mono: Is Your "Clean" Vulnerability Dataset Really Solvable? Exposing and Trapping Undecidable Patches and Beyond

The quantity and quality of vulnerability datasets are essential for developing deep learning solutions to vulnerability-related tasks. Due to the limited availability of vulnerabilities, a common approach to building such datasets is analyzing security patches in source code. However, existing...

7.3AI score
Exploits0
Vulnrichment
Vulnrichment
added 2025/05/27 3:41 p.m.9 views

CVE-2025-27700

There is a possible bypass of carrier restrictions due to an unusual root cause. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.5AI score0.00105EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/05/25 12:0 a.m.7 views

BSAGIoT: a Bayesian Security Aspect Graph for Internet of Things (IoT)

IoT is a dynamic network of interconnected things that communicate and exchange data, where security is a significant issue. Previous studies have mainly focused on attack classifications and open issues rather than presenting a comprehensive overview on the existing threats and vulnerabilities...

7.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/05/05 12:0 a.m.4 views

Abnormal Asset Behavior Detected (Critical)

This asset behavior is an anomaly that needs to be verified for the root cause. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503205;...

5.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/05/05 12:0 a.m.7 views

Abnormal Asset Behavior Detected (Medium)

This asset behavior is an anomaly that needs to be verified for the root cause. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503203;...

5.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/05/05 12:0 a.m.6 views

Abnormal Asset Behavior Detected (Low)

This asset behavior is an anomaly that needs to be verified for the root cause. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503202;...

5.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/05/05 12:0 a.m.4 views

Abnormal Asset Behavior Detected (High)

This asset behavior is an anomaly that needs to be verified for the root cause. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503204;...

5.4AI score
Exploits0
OSV
OSV
added 2025/05/01 12:0 a.m.8 views

PUB-A-330507809

There is a possible bypass of carrier restrictions due to an unusual root cause. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS7.4AI score0.00105EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/04/16 12:0 a.m.9 views

OpDiffer: LLM-Assisted Opcode-Level Differential Testing of Ethereum Virtual Machine

As Ethereum continues to thrive, the Ethereum Virtual Machine EVM has become the cornerstone powering tens of millions of active smart contracts. Intuitively, security issues in EVMs could lead to inconsistent behaviors among smart contracts or even denial-of-service of the entire blockchain...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2019-7574

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SDL Simple DirectMedia Layer through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in IMAADPCMdecode in audio/SDLwave.c. CVE-2019-7574 Note tha...

8.8CVSS6.7AI score0.02806EPSS
Exploits1References3
CNNVD
CNNVD
added 2025/01/03 12:0 a.m.4 views

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android has a security vulnerability that stems from an anomalous root cause and possible biometric bypass. The vulnerability can be exploited by an attacker to elevate privileges...

7.8CVSS6.9AI score0.00076EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/03 12:0 a.m.6 views

PT-2025-2992 · Google · Android

Name of the Vulnerable Software and Affected Versions: Software affected versions not specified Description: The issue is related to a possible biometric bypass due to an unusual root cause, which could lead to local escalation of privilege with no additional execution privileges needed. User...

7.8CVSS7.8AI score0.00076EPSS
Exploits0References8
Rows per page
Query Builder