Toward Securing AI Agents like Operating Systems

Autonomous agents based on large language models LLMs are rapidly emerging as a general-purpose technology, with recent systems such as OpenClaw extending their capabilities through broad tool use, third-party skills, and deeper integration into user environments. At the same time, these agentic...

Toward Secure Web to ERP Payment Flows: A Case Study of HTTP Header Trust Failures in SAP Based Systems

Electronic banking portals often sit in front of enterprise resource planning ERP systems such as SAP, mediating payment requests between users and back end financial infrastructure. When these integrations place excessive trust in client supplied HTTP metadata, subtle design flaws can arise that...

Power Side-Channel Analysis of the CVA6 RISC-V Core at the RTL Level Using VeriSide

Security in modern RISC-V processors demands more than functional correctness: It requires resilience to side-channel attacks. This paper evaluates the vulnerability of the side channel of the CVA6 RISC-V core by analyzing software-based AES encryption uses an RTL-level power profiling framework...

EUVD-2021-22694

Malware in sbrugna...

EUVD-2017-15100

Malware in sbrugna...

EUVD-2019-6568

Malware in sbrugna...

EUVD-2025-27463

Malicious code in bioql PyPI...

EUVD-2021-29717

Malicious code in bioql PyPI...

EUVD-2021-31530

Malicious code in bioql PyPI...

EUVD-2025-14677

Malicious code in bioql PyPI...

EUVD-2022-52537

Malicious code in bioql PyPI...

EUVD-2022-2998

Malicious code in bioql PyPI...

Adobe Acrobat < 20.005.30791 / 24.001.30264 / 25.001.20693 Multiple Vulnerabilities (APSB25-85) (macOS)

The version of Adobe Acrobat installed on the remote macOS host is a version prior to 20.005.30791, 24.001.30264, or 25.001.20693. It is, therefore, affected by multiple vulnerabilities. - Acrobat Reader versions 24.001.30254, 20.005.30774, 25.001.20672 and earlier are affected by a Use After Fre...

Adobe Acrobat < 20.005.30793 / 24.001.30264 / 25.001.20693 Multiple Vulnerabilities (APSB25-85)

The version of Adobe Acrobat installed on the remote Windows host is a version prior to 20.005.30793, 24.001.30264, or 25.001.20693. It is, therefore, affected by multiple vulnerabilities. - Acrobat Reader versions 24.001.30254, 20.005.30774, 25.001.20672 and earlier are affected by a Use After...

Adobe Reader < 20.005.30791 / 25.001.20693 Multiple Vulnerabilities (APSB25-85) (macOS)

The version of Adobe Reader installed on the remote macOS host is a version prior to 20.005.30791 or 25.001.20693. It is, therefore, affected by multiple vulnerabilities. - Acrobat Reader versions 24.001.30254, 20.005.30774, 25.001.20672 and earlier are affected by a Use After Free vulnerability...

CVE-2025-54255

Acrobat Reader versions 24.001.30254, 20.005.30774, 25.001.20672 and earlier are affected by a Violation of Secure Design Principles vulnerability that could result in a security feature bypass impacting integrity. An attacker does not have to be authenticated. Exploitation of this issue does not...

CVE-2025-54255

Acrobat Reader versions 24.001.30254, 20.005.30774, 25.001.20672 and earlier are affected by a Violation of Secure Design Principles vulnerability that could result in a security feature bypass impacting integrity. An attacker does not have to be authenticated. Exploitation of this issue does not...

CVE-2025-54255 Acrobat Reader | Violation of Secure Design Principles (CWE-657)

Acrobat Reader versions 24.001.30254, 20.005.30774, 25.001.20672 and earlier are affected by a Violation of Secure Design Principles vulnerability that could result in a security feature bypass impacting integrity. An attacker does not have to be authenticated. Exploitation of this issue does not...

CVE-2025-54255

Adobe Acrobat Reader is affected by CVE-2025-54255 (Violation of Secure Design Principles) in versions 24.001.30254, 20.005.30774, 25.001.20672 and earlier. The issue could bypass an integrity-related security feature and does not require authentication or user interaction; the impact is limited ...

CVE-2022-30707

Violation of secure design principles exists in the communication of CAMS for HIS. Affected products and versions are CENTUM series where LHS4800 is installed CENTUM CS 3000 and CENTUM CS 3000 Small R3.08.10 to R3.09.00, CENTUM series where CAMS function is used CENTUM VP, CENTUM VP Small, and...