Rethinking Side-Channel Analysis: Automated Discovery and Analysis of Side-Channel Leakage with LLM-Assisted Agents

Side-channel attacks exploit unintended information leakage from system behavior and continue to pose serious privacy risks in modern platforms. Despite extensive prior work, side-channel analysis remains largely manual and fragmented, typically assuming predefined target events and a fixed set o...

EUVD-2002-0695

Malware in sbrugna...

EUVD-2025-10992

Malicious code in bioql PyPI...

Exploit for Race Condition in Openbsd Openssh

NO REGRESSH - Enhanced CVE-2024-6387 Framework A complete Pyt...

CVE-2025-1292

Out-Of-Bounds Write in TPM2 Reference Library in Google ChromeOS 122.0.6261.132 stable on Cr50 Boards allows an attacker with root access to gain persistence and bypass operating system verification via exploiting the NVRead functionality during the Challenge-Response process...

CVE-2025-1292

Out-Of-Bounds Write in TPM2 Reference Library in Google ChromeOS 122.0.6261.132 stable on Cr50 Boards allows an attacker with root access to gain persistence and bypass operating system verification via exploiting the NVRead functionality during the Challenge-Response process...

CVE-2025-1292

Out-Of-Bounds Write in TPM2 Reference Library in Google ChromeOS 122.0.6261.132 stable on Cr50 Boards allows an attacker with root access to gain persistence and bypass operating system verification via exploiting the NVRead functionality during the Challenge-Response process...

CVE-2025-1122

Out-Of-Bounds Write in TPM2 Reference Library in Google ChromeOS 15753.50.0 stable on Cr50 Boards allows an attacker with root access to gain persistence and Bypass operating system verification via exploiting the NVRead functionality during the Challenge-Response process...

CVE-2025-1122

CVE-2025-1122 affects Google ChromeOS (ChromeOS, TPM2 Reference Library) on Cr50-based devices. The connected PT-2025-16388 entry provides concrete details: Out-of-Bounds Write in the TPM2 Reference Library, exploitable by a user with root access to gain persistence and bypass OS verification via...

CVE-2025-1122

Out-Of-Bounds Write in TPM2 Reference Library in Google ChromeOS 15753.50.0 stable on Cr50 Boards allows an attacker with root access to gain persistence and Bypass operating system verification via exploiting the NVRead functionality during the Challenge-Response process...

CVE-2025-1292 TPM2 Out-Of-Bounds Write Leading to Potential Operating System Verification Bypass in ChromeOS

Out-Of-Bounds Write in TPM2 Reference Library in Google ChromeOS 122.0.6261.132 stable on Cr50 Boards allows an attacker with root access to gain persistence and bypass operating system verification via exploiting the NVRead functionality during the Challenge-Response process...

CVE-2025-1292

CVE-2025-1292 describes an out-of-bounds write in the TPM2 Reference Library used by Google ChromeOS 122.0.6261.132 on Cr50 boards. The root cause is an NV_Read path leveraged during the Challenge-Response process, allowing an attacker with root access to gain persistence and bypass operating-sys...

CVE-2025-1292 TPM2 Out-Of-Bounds Write Leading to Potential Operating System Verification Bypass in ChromeOS

Out-Of-Bounds Write in TPM2 Reference Library in Google ChromeOS 122.0.6261.132 stable on Cr50 Boards allows an attacker with root access to gain persistence and bypass operating system verification via exploiting the NVRead functionality during the Challenge-Response process...

Malicious Package in blubird

Version 3.5.0 of blubird contains malicious code . The package is malware designed to take advantage of users making a mistake when typing the name of a module to install. Upon require the package attempts to start a cryptocurrency miner using coin-hive. Recommendation Remove the package from you...

ISC BIND 'isselfsigned()' Denial of Service Vulnerability

BIND is a very widely used implementation of the DNS protocol. ISC BIND name.c is configured as a DNSSEC-verifiable recursive resolver, allowing remote attackers to construct domain data, query the domain name, and submit special requests that can crash the backend program...

Fedora Update for bcfg2 FEDORA-2011-13214

Check for the Version of bcfg2 OpenVAS Vulnerability Test Fedora Update for bcfg2 FEDORA-2011-13214 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

Bagle Worm Removal

The remote host had the Bagle worm installed. Nessus attempted to remove it by connecting to port 6777 of the host and using the built-in removal command. However, you should verify that : - The worm was removed properly - The remote host has not been altered in any other way. C Tenable Network...