11 matches found
[SECURITY] Fedora 44 Update: singularity-ce-4.4.2-1.fc44
SingularityCE is the Community Edition of Singularity, an open source container platform designed to be simple, fast, and secure...
MAL-2026-5441 Malicious code in exodus-secure-container (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 92bc77b12251baa18392bd90e84d6bdc57aaef9a8c774f8cb29a0066e80f76b5 On npm install, the package runs node src/canary.js as a postinstall hook. That script performs a DNS lookup and HTTPS GET to the hardcoded host...
12 Best Practices for Securing AWS Cloud in 2026
Key Takeaways Securing AWS cloud in 2026 depends on continuous, risk-based governance rather than isolated tools or one-time checks. Most cloud security incidents stem from customer-side issues such as identity misuse, misconfigurations, and exposed workloads. Effective security for AWS cloud...
EUVD-2026-11408
FastGPT is an AI Agent building platform. In 4.14.7 and earlier, FastGPT's Python Sandbox fastgpt-sandbox includes guardrails intended to prevent file writes static detection + seccomp. These guardrails are bypassable by remapping stdout fd 1 to an arbitrary writable file descriptor using fcntl...
5 Best Secure Container Images for Modern Applications (2026)
Secure container images are now essential for modern apps. These five options help teams reduce risk, cut patching effort, and improve long-term security...
aws-mcp-server 操作系统命令注入漏洞
aws-mcp-server is a lightweight service by Alexei Ledenev, a personal developer, that enables AI assistants to execute AWS CLI commands in a secure containerized environment via the Model Context Protocol MCP. An operating system command injection vulnerability exists in versions prior to...
Vulnerability Mitigation System (VMS): LLM Agent and Evaluation Framework for Autonomous Penetration Testing
As the frequency of cyber threats increases, conventional penetration testing is failing to capture the entirety of todays complex environments. To solve this problem, we propose the Vulnerability Mitigation System VMS, a novel agent based on a Large Language Model LLM capable of performing...
CVE-2023-33957
notation is a CLI tool to sign and verify OCI artifacts and container images. An attacker who has compromised a registry and added a high number of signatures to an artifact can cause denial of service of services on the machine, if a user runs notation inspect command on the same machine. The...
CVE-2023-33957
notation is a CLI tool to sign and verify OCI artifacts and container images. An attacker who has compromised a registry and added a high number of signatures to an artifact can cause denial of service of services on the machine, if a user runs notation inspect command on the same machine. The...
CVE-2019-6744
This vulnerability allows local attackers to disclose sensitive information on affected installations of Samsung Knox 1.2.02.39 on Samsung Galaxy S9 build G9600ZHS3ARL1 Secure Folder. An attacker must first obtain physical access to the device in order to exploit this vulnerability. The specific...
PT-2019-18304 · Samsung · Samsung Knox
Name of the Vulnerable Software and Affected Versions: Samsung Knox version 1.2.02.39 Description: This issue allows local attackers to disclose sensitive information on affected installations. An attacker must first obtain physical access to the device to exploit this. The flaw exists within the...