Lucene search
K

11 matches found

Packet Storm News
Packet Storm News
added 2025/11/18 12:0 a.m.3 views

Structured Extraction of Vulnerabilities in OpenVAS and Tenable WAS Reports Using LLMs

This paper proposes an automated LLM-based method to extract and structure vulnerabilities from OpenVAS and Tenable WAS scanner reports, converting unstructured data into a standardized format for risk management. In an evaluation using a report with 34 vulnerabilities, GPT-4.1 and DeepSeek...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2020-28195

Malware in sbrugna...

9.1CVSS8.3AI score0.03976EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2022-52458

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00256EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-0147

Malicious code in bioql PyPI...

8.8CVSS8.5AI score0.00883EPSS
Exploits1References7
Packet Storm News
Packet Storm News
added 2025/06/23 12:0 a.m.13 views

FORGE: an LLM-Driven Framework for Large-Scale Smart Contract Vulnerability Dataset Construction

High-quality smart contract vulnerability datasets are critical for evaluating security tools and advancing smart contract security research. Two major limitations of current manual dataset construction are 1 labor-intensive and error-prone annotation processes limiting the scale, quality, and...

6.8AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/06/03 12:0 a.m.6 views

PT-2025-23610

Name of the Vulnerable Software and Affected Versions The product name cannot be determined. Description The issue concerns the behavior of TarFile when extracting with a filter and TarFile.errorlevel = 0. The documented behavior is that any filtered members should be skipped and not extracted...

9.4CVSS7AI score0.01499EPSS
Exploits14References220
OSV
OSV
added 2025/06/02 7:20 p.m.4 views

CVE-2025-48387 tar-fs has issue where extract can write outside the specified dir with a specific tarball

tar-fs provides filesystem bindings for tar-stream. Versions prior to 3.0.9, 2.1.3, and 1.16.5 have an issue where an extract can write outside the specified dir with a specific tarball. This has been patched in versions 3.0.9, 2.1.3, and 1.16.5. As a workaround, use the ignore option to ignore n...

8.7CVSS5.3AI score0.00474EPSS
Exploits0References6
OPENSUSE Linux
OPENSUSE Linux
added 2025/03/12 12:0 a.m.9 views

Security update for ark (important)

openSUSE Security Update: Security update for ark Announcement ID: openSUSE-SU-2025:0090-1 Rating: important References: 1236737 Cross-References: CVE-2024-57966 CVSS scores: CVE-2024-57966 SUSE: 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N Affected Products: openSUSE...

4.8CVSS7.1AI score0.00271EPSS
Exploits0References1
OSV
OSV
added 2025/01/27 7:19 a.m.6 views

BIT-RUBY-MIN-2024-27282

An issue was discovered in Ruby 3.x through 3.3.0. If attacker-supplied data is provided to the Ruby regex compiler, it is possible to extract arbitrary heap data relative to the start of the text, including pointers and sensitive strings. The fixed versions are 3.0.7, 3.1.5, 3.2.4, and 3.3.1...

6.6CVSS8AI score0.00629EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/10/01 12:0 a.m.8 views

PT-2024-10268

Name of the Vulnerable Software and Affected Versions 7-Zip versions prior to 24.09 Description This vulnerability allows remote attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of 7-Zip. User interaction is required to exploit this vulnerability, as the targ...

7CVSS7.6AI score0.67071EPSS
Exploits8References245
securityvulns
securityvulns
added 2005/01/07 12:0 a.m.61 views

[Full-Disclosure] WinHKI - ARC File Extraction of 1KB to 1.56GB

Application: WinHKI Vendors: http://www.webtoolmaster.com Versions: 1.4d Platforms: Windows Bug: ARC File Extraction of 1KB to 1.56GB Exploitation: Local extract file Date: 24 Dec 2004 Author: Rafel Ivgi, The-Insider E-Mail: [email protected] Website: http://theinsider.deep-ice.com 1 Introducti...

0.2AI score
Exploits0
Rows per page
Query Builder