82 matches found
USN-7949-1: Sodium vulnerability
It was discovered that Sodium incorrectly handled the elliptic curve point validity check in certain atypical use cases. This could result in invalid points being used, contrary to expectations...
EUVD-2021-15890
Malware in sbrugna...
EUVD-2010-1127
Malware in sbrugna...
EUVD-2025-27633
Malicious code in bioql PyPI...
EUVD-2024-54386
Malicious code in bioql PyPI...
CVE-2025-9918
A Path Traversal vulnerability in the archive extraction component in Google SecOps SOAR Server versions 6.3.54.0, 6.3.53.2, and all prior versions allows an authenticated attacker with permissions to import Use Cases to achieve Remote Code Execution RCE via uploading a malicious ZIP archive...
threat-detection-as-code
This repository is a community-driven set of security analytics for auditing cloud usage and detecting threats to data & workloads in Google Cloud. It provides a list of sample security analytics for auditing cloud usage and for detecting threats to your data & workloads in Google Cloud. The...
CVE-2025-9918
A Path Traversal vulnerability in the archive extraction component in Google SecOps SOAR Server versions 6.3.54.0, 6.3.53.2, and all prior versions allows an authenticated attacker with permissions to import Use Cases to achieve Remote Code Execution RCE via uploading a malicious ZIP archive...
CVE-2025-9918 Zip Slip in Google SecOps SOAR allows for Remote Code Execution
A Path Traversal vulnerability in the archive extraction component in Google SecOps SOAR Server versions 6.3.54.0, 6.3.53.2, and all prior versions allows an authenticated attacker with permissions to import Use Cases to achieve Remote Code Execution RCE via uploading a malicious ZIP archive...
AI in Cloud Computing: How AI Is Revolutionizing the Landscape
Discover how AI in cloud computing is transforming industries. Learn about the differences between cloud AI and edge AI — their benefits, use cases, and solutions...
Amazon Linux 2023 : screen (ALAS2023-2025-1006)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1006 advisory. TTY Hijacking while Attaching to a Multiuser Session in the screen package Has potential to break some reattach use cases, but the specific use case was broken already before.screen in Debian not...
CVE-2023-28604
The fluidcomponents aka Fluid Components extension before 3.5.0 for TYPO3 allows XSS via a component argument parameter, for certain content use cases that may be edge cases...
CVE-2010-1095
Cross-site scripting XSS vulnerability in loginresetpasswordpage.php in Tracking Requirements & Use Cases TRUC 0.11.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the error parameter. NOTE: the provenance of this information is unknown; the details are obtained...
Robust and Efficient AI-Based Attack Recovery in Autonomous Drones
We introduce an autonomous attack recovery architecture to add common sense reasoning to plan a recovery action after an attack is detected. We outline use-cases of our architecture using drones, and then discuss how to implement this architecture efficiently and securely in edge devices...
CVE-2024-43065
Cryptographic issues while generating an asymmetric key pair for RKP use cases...
CVE-2024-43065
Cryptographic issues while generating an asymmetric key pair for RKP use cases...
Secure Your Attack Surface: Key Findings from IDC's 2024 Spotlight Report
Rapid7 recently collaborated with IDC on their comprehensive Attack Surface Management Spotlight guide. These Spotlight publications deliver expert analyst perspectives on critical business and technology challenges, emerging industry trends, and innovative solutions. We're pleased to share IDC...
Object Storage Use Cases in Focus: New Endpoints for Higher Capacity and Speed
...
PT-2025-54285
Name of the Vulnerable Software and Affected Versions libsodium versions prior to ad3004e Description The software mishandles checks for the validity of elliptic curve points in specific, unusual scenarios. This occurs when custom cryptography or untrusted data is used with the crypto core ed2551...
Enhance customer experiences with Generative AI
The advent of Generative AI and its application in real-life use cases has been on the cards for…...