From Model to Breach: Towards Actionable LLM-Generated Vulnerabilities Reporting

As the role of Large Language Models LLM-based coding assistants in software development becomes more critical, so does the role of the bugs they generate in the overall cybersecurity landscape. While a number of LLM code security benchmarks have been proposed alongside approaches to improve the...

EUVD-2006-1885

Malware in sbrugna...

CVE-2024-13421

creationtimestamp| type| source ---|---|--- 2025-02-12 04:30:12+00:00| seen| https://infosec.exchange/users/cve/statuses/113989033114600468 2025-02-12 05:15:44+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhxg6bzjxd2z 2025-02-12 06:48:39+00:00| seen|...

CVE-2025-21322

creationtimestamp| type| source ---|---|--- 2025-02-11 18:08:38+00:00| seen| https://www.thezdi.com/blog/2025/2/11/the-february-2025-security-update-review 2025-02-11 18:17:10+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhwbeothr52x 2025-02-11 19:04:16+00:00| seen|...

CVE-2024-41981

creationtimestamp| type| source ---|---|--- 2024-10-10 12:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-24-284-02 2024-12-12 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-24-347-06...

CVE-2021-34993

creationtimestamp| type| source ---|---|--- 2022-01-14 00:23:58+00:00| seen| https://t.me/cibsecurity/35462 2025-01-15 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-01-15 2025-01-26 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-01-26...

Simple, but Critical vulnerability in Verizon Portal revealed users' SMS History

A Security researcher discovered a critical privacy vulnerability on Verizon Wireless's Web-based customer portal that allows anyone to download user's SMS History and Numbers of other users he communicated with. Back in August, researcher 'Cody Collier' found that a simple URL exploit could allo...

Microsoft Says No to Paying Bug Bounties

Microsoft has no plans to follow in the footsteps of Mozilla and Google and pay researchers cash rewards for the bugs that they find in Microsoft’s products. In the wake of both Mozilla and Google significantly increasing their bug bounties to the $3,000 range, there have been persistent rumors i...

[ MDKSA-2007:019 ] - Updated pdftohtml packages fix crafted pdf file vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2007:019 http://www.mandriva.com/security/ Package : pdftohtml Date : January 18, 2007 Affected: 2006.0, 2007.0 Problem Description: The Adobe PDF specification 1.3, as implemented by xpdf 3.0.1 patch 2, kpdf in...