Lucene search
K

6 matches found

Packet Storm News
Packet Storm News
added 2026/05/08 12:0 a.m.7 views

Can I Check What I Designed? Mapping Security Design DSLs to Code Analyzers

When assessing the potential impact of code-level vulnerabilities, e.g., discovered by automated analyzers, it is essential to consider them in the context of the system's security design. However, this is a challenging task due to the abstraction gap between security design, often specified usin...

5.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/11/04 12:0 a.m.4 views

On the Dangers of Poisoned LLMs in Security Automation

This paper investigates some of the risks introduced by "LLM poisoning," the intentional or unintentional introduction of malicious or biased data during model training. We demonstrate how a seemingly improved LLM, fine-tuned on a limited dataset, can introduce significant bias, to the extent tha...

6.7AI score
Exploits0
Vulnrichment
Vulnrichment
added 2025/10/02 12:8 p.m.1 views

CVE-2024-58267 Rancher CLI SAML authentication is vulnerable to phishing attacks

A vulnerability has been identified within Rancher Manager whereby the SAML authentication from the Rancher CLI tool is vulnerable to phishing attacks. The custom authentication protocol for SAML-based providers can be abused to steal Rancher’s authentication tokens...

8CVSS6.8AI score0.00217EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2019/05/31 12:0 a.m.4 views

The vulnerability of the implementation of the Security Assertion Markup Language (SAML) in Cisco Adaptive Security Appliances and Cisco Firepower Threat Defense allows a perpetrator to bypass the authentication process.

The vulnerability of the Security Assertion Markup Language SAML implementation in Cisco Adaptive Security Appliances and Cisco Firepower Threat Defense is related to authentication errors when using NT LAN Manager NTLM or basic authentication. Exploiting this vulnerability allows a malicious act...

5.8CVSS6.5AI score0.01977EPSS
Exploits0References4Affected Software2
Cvelist
Cvelist
added 2005/07/17 4:0 a.m.27 views

CVE-2004-2236

Unknown vulnerability in Moodle before 1.3.3 has unknown impact and attack vectors, related to language setting...

6.5AI score0.01412EPSS
Exploits0References2
Microsoft Security Update
Microsoft Security Update
added 1970/01/01 12:0 a.m.13 views

Exchange Core CHS Lang

...

1.1AI score
Exploits0
Rows per page
Query Builder