AI Agents Are Democratizing Finance but Also Redefining Risk

AI agents are transforming finance, enabling automated trading and payments, but introduce new risks around keys, data inputs and secure execution control...

EUVD-2016-9262

Malware in sbrugna...

EUVD-2016-6300

Malware in sbrugna...

EUVD-2016-9328

Malware in sbrugna...

The vulnerability of the enterprise automation system 1C:Enterprise lies in errors related to the mechanism for extending configurations, which allows attackers to disable the secure execution mode of software code.

The vulnerability of the 1C:Enterprise automation system lies in errors related to the mechanism for extending configuration settings. Exploiting this vulnerability allows attackers to disable the secure execution mode of the software code...

ACE: a Security Architecture for LLM-Integrated App Systems

LLM-integrated app systems extend the utility of Large Language Models LLMs with third-party apps that are invoked by a system LLM using interleaved planning and execution phases to answer user queries. These systems introduce new attack vectors where malicious apps can cause integrity violation ...

PT-2024-10570 · Qualcomm · Qsee

Name of the Vulnerable Software and Affected Versions: QSEE affected versions not specified Description: The issue is related to the QSEE experiencing a fatal error during execution. This error occurs due to speculative instruction fetches from device memory, which is not valid executable memory...

Qualcomm Chip Flaws Let Hackers Steal Private Data From Android Devices

Hundreds of millions of devices, especially Android smartphones and tablets, using Qualcomm chipsets, are vulnerable to a new set of potentially serious vulnerabilities. According to a report cybersecurity firm CheckPoint shared with The Hacker News, the flaws could allow attackers to steal...

The vulnerability of the 1Policy procedure (the “forceput” version of the procedure) for software that processes, transforms, and generates Ghostscript documents involves a possibility to bypass the environment for secure execution. This allows a perpetrator to execute arbitrary code.

The vulnerability of the 1Policy procedure the “forceput” version of the procedure in the software for processing, transforming, and generating Ghostscript documents is related to the possibility of circumventing the environment for secure execution, even when the -dSAFER option is used. Exploiti...

Google Android Qualcomm QTEECOM Driver Privilege Access Control Vulnerability

Android on Google Pixel and Nexus is an open source Linux-based operating system for Google Pixel and Nexus smartphones developed by Google Inc. and the Open Handset Alliance OHA.Qualcomm QTEECOM driver The Qualcomm QTEECOM driver is one of the Secure Execution Environment Communicator drivers. A...

Google Android has an unspecified vulnerability (CNVD-2018-10037)

Android is a Linux-based open-source operating system jointly developed by Google and the Open Handheld Alliance OHA for short, and Qualcomm MDM9625 and other central processing unit CPU products from Qualcomm are used in different platforms. A security vulnerability exists in the Qualcomm...

glibc: heap/stack gap jumping via unbounded stack allocations

A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap or different memory region and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process sta...

glibc: heap/stack gap jumping via unbounded stack allocations

A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap or different memory region and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process sta...

glibc: heap/stack gap jumping via unbounded stack allocations

A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap or different memory region and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process sta...

CVE-2017-1000366

A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap or different memory region and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process sta...

The vulnerability of the TrustZone component of Qualcomm Secure Execution Environment allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of Qualcomm’s TrustZone microprogramming software’s Android Secure Execution Environment from the CAF repository is due to a numerical overflow. Exploiting this vulnerability could allow an attacker, operating remotely, to compromise the confidentiality, integrity, and...

The vulnerability of Qualcomm’s TrustZone microprogramming software technology allows attackers to enhance their privileges.

The vulnerability of Qualcomm’s TrustZone microprogramming software’s Android Secure Execution Environment from the CAF repository is related to errors in cryptographic transformations. Exploiting this vulnerability could allow a malicious actor to gain increased privileges remotely...

The vulnerability of Qualcomm’s TrustZone microprogramming software technology allows attackers to enhance their privileges.

The vulnerability of the TrustZone technology a DRM sub-program of Qualcomm’s Secure Execution Environment for Android from the CAF repository is related to numerical processing errors. Exploiting this vulnerability could allow a remote attacker to gain increased privileges...

The vulnerability of the TrustZone technology (QFPROM mode of Qualcomm Secure Execution Environment) allows for breaches of the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the TrustZone technology QFPROM mode of Qualcomm Secure Execution Environment for Android from the CAF repository arises due to synchronization errors when using a common resource. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality,...

The vulnerability of Qualcomm’s TrustZone microprogramming software technology allows a hacker to gain access to local files.

The vulnerability of the TrustZone technology a DRM sub-program of Qualcomm’s Secure Execution Environment for Android from the CAF repository is related to pointer dereferencing errors. Exploiting this vulnerability could allow a remote attacker to gain access to local files...