797 matches found
EUVD-2021-0434
Malware in sbrugna...
EUVD-2021-0403
Malware in sbrugna...
EUVD-2021-0347
Malware in sbrugna...
EUVD-2021-0262
Malware in sbrugna...
EUVD-2006-4603
Malware in sbrugna...
EUVD-2022-6958
Malicious code in bioql PyPI...
EUVD-2022-0328
Malicious code in bioql PyPI...
EUVD-2022-0320
Malicious code in bioql PyPI...
EUVD-2025-29514
Malicious code in bioql PyPI...
EUVD-2022-0291
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2024-3860
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-memory condition during object initialization could result in an empty shape list. If the JIT subsequently traced the object it would crash. This...
PT-2025-32598 · Maven · Org.Opensearch.Plugin:Opensearch-Security
Impact OpenSearch versions 2.19.2 and earlier improperly apply field masking rules on fields of the types ip, geo point, geo shape, xy point, xy shape. While the content of these fields is properly redacted in the source document returned by search operations, the original unredacted values remai...
Cross-site Scripting (XSS)
Overview @fluentui/react-charts is a React web chart controls for Microsoft fluentui v9 system. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the unsecured SVG attribute spreading in the CartesianChart, Legend Shape renderer, and LineChart event annotation Textb...
Cross-site Scripting (XSS)
Overview @fluentui/react-charting is a React web charting controls for Microsoft fluentui system. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the unsecured SVG attribute spreading in the CartesianChart, Legend Shape renderer, and LineChart event annotation...
Pulse-Level Simulation of Crosstalk Attacks on Superconducting Quantum Hardware
Hardware crosstalk in multi-tenant superconducting quantum computers poses a severe security threat, allowing adversaries to induce targeted errors across tenant boundaries by injecting carefully engineered pulses. We present a simulation-based study of active crosstalk attacks at the pulse level...
AdvGrasp: Adversarial Attacks on Robotic Grasping from a Physical Perspective
Adversarial attacks on robotic grasping provide valuable insights into evaluating and improving the robustness of these systems. Unlike studies that focus solely on neural network predictions while overlooking the physical principles of grasping, this paper introduces AdvGrasp, a framework for...
Towards Safety and Security Testing of Cyberphysical Power Systems by Shape Validation
The increasing complexity of cyberphysical power systems leads to larger attack surfaces to be exploited by malicious actors and a higher risk of faults through misconfiguration. We propose to meet those risks with a declarative approach to describe cyberphysical power systems and to automaticall...
CVE-2022-21731
Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for ConcatV2 can be used to trigger a denial of service attack via a segfault caused by a type confusion. The axis argument is translated into concatdim in the ConcatShapeHelper helper function. Then, a...
CVE-2022-23580
Tensorflow is an Open Source Machine Learning Framework. During shape inference, TensorFlow can allocate a large vector based on a value from a tensor controlled by the user. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, a...
CVE-2022-41885
TensorFlow is an open source platform for machine learning. When tf.rawops.FusedResizeAndPadConv2D is given a large tensor shape, it overflows. We have patched the issue in GitHub commit d66e1d568275e6a2947de97dca7a102a211e01ce. The fix will be included in TensorFlow 2.11. We will also cherrypick...