Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Packet Storm News
Packet Storm Newsadded 2026/01/10 12:0 a.m.10 views

ALFA: A Safe-By-Design Approach to Mitigate Quishing Attacks Launched Via Fancy QR Codes

Phishing with Quick Response QR codes is termed as Quishing. The attackers exploit this method to manipulate individuals into revealing their confidential data. Recently, we see the colorful and fancy representations of QR codes, the 2D matrix of QR codes which does not reflect a typical mixture ...

6.9AI score
Exploits0
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2021-0221

Malware in sbrugna...

7.3CVSS6.9AI score0.00734EPSS
Exploits0References4
Packet Storm News
Packet Storm Newsadded 2025/07/24 12:0 a.m.11 views

LoRA-Leak: Membership Inference Attacks against LoRA Fine-Tuned Language Models

Language Models LMs typically adhere to a "pre-training and fine-tuning" paradigm, where a universal pre-trained model can be fine-tuned to cater to various specialized domains. Low-Rank Adaptation LoRA has gained the most widespread use in LM fine-tuning due to its lightweight computational cost...

6.6AI score
Exploits0
OSV
OSVadded 2021/12/08 11:15 p.m.16 views

CVE-2021-43811

Sockeye is an open-source sequence-to-sequence framework for Neural Machine Translation built on PyTorch. Sockeye uses YAML to store model and data configurations on disk. Versions below 2.3.24 use unsafe YAML loading, which can be made to execute arbitrary code embedded in config files. An...

7.8CVSS7.7AI score
Exploits0References3
PyPA
PyPAadded 2021/12/08 11:15 p.m.9 views

PYSEC-2021-848

Sockeye is an open-source sequence-to-sequence framework for Neural Machine Translation built on PyTorch. Sockeye uses YAML to store model and data configurations on disk. Versions below 2.3.24 use unsafe YAML loading, which can be made to execute arbitrary code embedded in config files. An...

7.8CVSS7.8AI score0.02415EPSS
Exploits0References3Affected Software1
Prion
Prionadded 2021/12/08 11:15 p.m.17 views

Code injection

Sockeye is an open-source sequence-to-sequence framework for Neural Machine Translation built on PyTorch. Sockeye uses YAML to store model and data configurations on disk. Versions below 2.3.24 use unsafe YAML loading, which can be made to execute arbitrary code embedded in config files. An...

6.8CVSS7.7AI score0.02415EPSS
Exploits0References3Affected Software1
NVD
NVDadded 2021/10/22 7:15 p.m.11 views

CVE-2021-42556

Rasa X before 0.42.4 allows Directory Traversal during archive extraction. In the functionality that allows a user to load a trained model archive, an attacker has arbitrary write capability within specific directories via a crafted archive file...

5.5CVSS0.00929EPSS
Exploits0References2
Veracode
Veracodeadded 2021/10/22 3:17 a.m.13 views

Arbitrary File Write

rasa is vulnerable to arbitrary file write. A malicious user is able to cause arbitrary file writes within specific directories via a trained model which contains a crafted model.tar.gz file...

7.3CVSS4AI score0.00734EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder