Lucene search
+L

348 matches found

Vulnrichment
Vulnrichment
added 2025/06/19 2:24 p.m.5 views

CVE-2025-48886 hydra-node dangerously assumes L1 event finality and does not consider failed transactions

Hydra is a layer-two scalability solution for Cardano. Prior to version 0.22.0, the process assumes L1 event finality and does not consider failed transactions. Currently, Cardano L1 is monitored for certain events which are necessary for state progression. At the moment, Hydra considers those...

4.8CVSS7AI score0.00252EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/06/19 2:24 p.m.12 views

CVE-2025-48886 hydra-node dangerously assumes L1 event finality and does not consider failed transactions

Hydra is a layer-two scalability solution for Cardano. Prior to version 0.22.0, the process assumes L1 event finality and does not consider failed transactions. Currently, Cardano L1 is monitored for certain events which are necessary for state progression. At the moment, Hydra considers those...

4.8CVSS0.00252EPSS
Exploits0References3
CVE
CVE
added 2025/06/19 2:24 p.m.17 views

CVE-2025-48886

Hydra, a Layer-2 scaling solution for Cardano, is affected by a vulnerability that arises from assuming L1 finality and neglecting failed transactions. Before version 0.22.0, Hydra treated certain L1 events as finalized as soon as recognized by node participants, making those transactions targets...

4.8CVSS5.1AI score0.00252EPSS
Exploits0References3
OSV
OSV
added 2025/06/19 2:24 p.m.7 views

CVE-2025-48886 hydra-node dangerously assumes L1 event finality and does not consider failed transactions

Hydra is a layer-two scalability solution for Cardano. Prior to version 0.22.0, the process assumes L1 event finality and does not consider failed transactions. Currently, Cardano L1 is monitored for certain events which are necessary for state progression. At the moment, Hydra considers those...

4.8CVSS6.8AI score0.00252EPSS
Exploits0References5
Packet Storm News
Packet Storm News
added 2025/06/19 12:0 a.m.10 views

Efficient Blockchain-Based Steganography Via Backcalculating Generative Adversarial Network

Blockchain-based steganography enables data hiding via encoding the covert data into a specific blockchain transaction field. However, previous works focus on the specific field-embedding methods while lacking a consideration on required field-generation embedding. In this paper, we propose a...

6.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/06/19 12:0 a.m.7 views

PT-2025-26219 · Hydra · Hydra

Name of the Vulnerable Software and Affected Versions: Hydra versions prior to 0.22.0 Description: Hydra is a layer-two scalability solution for Cardano. The issue arises from the assumption of L1 event finality, where the system does not consider failed transactions on the Cardano L1. This makes...

4.8CVSS6.3AI score0.00252EPSS
Exploits0References8
Packet Storm News
Packet Storm News
added 2025/06/10 12:0 a.m.8 views

SoK: Machine Unlearning for Large Language Models

Large language model LLM unlearning has become a critical topic in machine learning, aiming to eliminate the influence of specific training data or knowledge without retraining the model from scratch. A variety of techniques have been proposed, including Gradient Ascent, model editing, and...

7AI score
Exploits0
Fedora
Fedora
added 2025/06/08 2:32 a.m.8 views

[SECURITY] Fedora 41 Update: fcgi-2.4.0-52.fc41

FastCGI is a language independent, scalable, open extension to CGI that provides high performance without the limitations of server specific APIs...

9.3CVSS7.3AI score0.00566EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/05 12:0 a.m.6 views

FedShield-LLM: a Secure and Scalable Federated Fine-Tuned Large Language Model

Federated Learning FL offers a decentralized framework for training and fine-tuning Large Language Models LLMs by leveraging computational resources across organizations while keeping sensitive data on local devices. It addresses privacy and security concerns while navigating challenges associate...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/02 12:0 a.m.12 views

ReGA: Representation-Guided Abstraction for Model-Based Safeguarding of LLMs

Large Language Models LLMs have achieved significant success in various tasks, yet concerns about their safety and security have emerged. In particular, they pose risks in generating harmful content and vulnerability to jailbreaking attacks. To analyze and monitor machine learning models,...

7.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/05/31 12:0 a.m.18 views

PackHero: a Scalable Graph-Based Approach for Efficient Packer Identification

Anti-analysis techniques, particularly packing, challenge malware analysts, making packer identification fundamental. Existing packer identifiers have significant limitations: signature-based methods lack flexibility and struggle against dynamic evasion, while Machine Learning approaches require...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/05/28 12:0 a.m.5 views

Efficient Preimage Approximation for Neural Network Certification

The growing reliance on artificial intelligence in safety- and security-critical applications demands effective neural network certification. A challenging real-world use case is certification against patch attacks'', where adversarial patches or lighting conditions obscure parts of images, for...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/05/26 12:0 a.m.6 views

EarthOL: a Proof-Of-Human-Contribution Consensus Protocol -- Addressing Fundamental Challenges in Decentralized Value Assessment with Enhanced Verification and Security Mechanisms

This paper introduces EarthOL, a novel consensus protocol that attempts to replace computational waste in blockchain systems with verifiable human contributions within bounded domains. While recognizing the fundamental impossibility of universal value assessment, we propose a domain-restricted...

6.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 2:1 a.m.8 views

CVE-2023-42806

Hydra is the layer-two scalability solution for Cardano. Prior to version 0.13.0, not signing and verifying $\mathsfcid$ allows an attacker which must be a participant of this head to use a snapshot from an old head instance with the same participants to close the head or contest the state with i...

6.5CVSS6.8AI score0.00413EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:1 a.m.11 views

CVE-2023-42448

Hydra is the layer-two scalability solution for Cardano. Prior to version 0.13.0, the specification states that the contestation period in the datum of the UTxO at the head validator must stay unchanged as the state progresses from Open to Closed Close transaction, but no such check appears to be...

8.1CVSS6.7AI score0.00785EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/05/21 12:0 a.m.8 views

Outsourcing SAT-Based Verification Computations in Network Security

The emergence of cloud computing gives huge impact on large computations. Cloud computing platforms offer servers with large computation power to be available for customers. These servers can be used efficiently to solve problems that are complex by nature, for example, satisfiability SAT problem...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/05/21 12:0 a.m.6 views

Zero-Trust Mobility-Aware Authentication Framework for Secure Vehicular Fog Computing Networks

Vehicular Fog Computing VFC is a promising paradigm to meet the low-latency and high-bandwidth demands of Intelligent Transportation Systems ITS. However, dynamic vehicle mobility and diverse trust boundaries introduce critical security challenges. This paper presents a novel Zero-Trust...

7.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/05/17 12:0 a.m.7 views

Efficient Implementations of Residue Generators Mod 2n + 1 Providing Diminished-1 Representation

The moduli of the form 2n + 1 belong to a class of low-cost odd moduli, which have been frequently selected to form the basis of various residue number systems RNS. The most efficient computations modulo mod 2n + 1 are performed using the so-called diminished-1 D1 representation. Therefore, it is...

7AI score
Exploits0
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.3 views

kernel: workqueue: Improve scalability of workqueue watchdog touch

No description is available for this CVE...

7.3AI score
Exploits0References5
Packet Storm News
Packet Storm News
added 2025/05/13 12:0 a.m.5 views

Blockchain Technology: Core Mechanisms, Evolution, and Future Implementation Challenges

Blockchain technology has emerged as one of the most transformative digital innovations of the 21st century. This paper presents a comprehensive review of blockchain's fundamental architecture, tracing its development from Bitcoin's initial implementation to current enterprise applications. We...

6.9AI score
Exploits0
Rows per page
Query Builder