CVE-2025-6514
Currently trending CVE - Hype Score: 40 - mcp-remote is exposed to OS command injection when connecting to untrusted MCP servers due to crafted input from the authorization_endpoint response URL
Aggregator
CVE-2025-40596
4 months 1 week ago
Currently trending CVE - Hype Score: 12 - A Stack-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution.
Google Calendar invites let researchers hijack Gemini to leak user data
4 months 1 week ago
Google fixed a bug that allowed maliciously crafted Google Calendar invites to remotely take over Gemini agents running on the target's device and leak sensitive user data. [...]
Bill Toulas
У вашей криптографии осталось 2 года до квантового обнуления, и это не прогноз, а реальный дедлайн
4 months 1 week ago
Алгоритм Шора способен работать в схемах глубиной более 67 тысяч операций.
WorldLeaks
4 months 1 week ago
You must login to view this content
cohenido
国内网页搜索用「必应」比百度强
4 months 1 week ago
bing的广告干扰更少
如何训练AI帮我调漏洞
4 months 1 week ago
本文链接
本议题将探讨如何结合大模型与MCP技术,实现对程序的静态分析、动态调试。基于这些技术,可以让AI参与漏洞研究,提升漏洞挖掘效率,并配合实际案例,展示AI在漏洞方面的工作能力。
《如何训练AI帮我调漏洞》以实战视角拆解大模型在漏洞挖掘与复现中的落地路径:先通过Function Calling打通LLM与IDA、GDB等工具的“最后一公里”,再借助MCP协议把静态反编译、动态调试、PoC生成、流量监控等异构能力串成一条Agent工作流。W22现场演示用AI编辑器+ida-mcp-server秒读ELF、定位strcpy溢出;用gdb-mcp-server远程下断、单步追踪内存变化;最终自动化复现Zimbra未授权RCE与未公开网络设备栈溢出漏洞。文档给出完整配置、脚本与踩坑提示,让AI真正“动”起来.
让安全大模型不做花瓶
4 months 1 week ago
本文链接
本议题聚焦于面向复杂场景的模型训练与架构设计,提出多种解决方案提升模型在网络安全场景下的理解与推理能力。在此方案下的实验中,体现了自动渗透、自动修复、自动信息收集、自动打靶、参与CTF竞赛等通用能力,初步具备无需人工干预的通用执行能力。
《让安全大模型不做花瓶》提出以RAG+ToT(Tree-of-Thoughts)架构破解大模型在安全场景中的上下文瓶颈,通过“分解-探索-剪枝”三阶段推理,把复杂网安任务拆成可验证的子链,再按优先级回溯生成最优策略。我们使用230M网安图书、1.1B公开文章及CTF Write-up继续预训练Hive-0模型,并引入GRPO强化学习与人类红队对抗,实现漏洞挖掘、渗透测试、告警研判等场景的自动化决策。配套浏览器驱动、Console工具链,支持一键调用扫描器、取证脚本,形成“人机协同-无人对抗”的闭环,真正让安全大模型从“问答玩具”变成可落地的防御生产力。
Первый VR-питомец, который чувствует объятия. Плюшевую игрушку научили любить в ответ
4 months 1 week ago
Нельзя завести котенка в общежитии? Современные технологии всё решают.
Researchers Detail Windows EPM Poisoning Exploit Chain Leading to Domain Privilege Escalation
4 months 1 week ago
Cybersecurity researchers have presented new findings related to a now-patched security issue in Microsoft's Windows Remote Procedure Call (RPC) communication protocol that could be abused by an attacker to conduct spoofing attacks and impersonate a known server.
The vulnerability, tracked as CVE-2025-49760 (CVSS score: 3.5), has been described by the tech giant as a Windows Storage spoofing bug
The Hacker News
Researchers Detail Windows EPM Poisoning Exploit Chain Leading to Domain Privilege Escalation
4 months 1 week ago
微软Windows RPC协议存在一个已修复的安全漏洞(CVE-2025-49760),允许攻击者通过EPM中毒攻击冒充合法服务器,劫持RPC客户端并提升权限。该漏洞于2025年7月修复,研究者展示了利用该漏洞进行本地或域级权限提升的技术,并开发了检测工具RPC-Racer。
Qilin
4 months 1 week ago
You must login to view this content
cohenido
ClickFix macOS Malware Targets User Login Credentials
4 months 1 week ago
Security researchers have identified a new malware campaign targeting macOS users through a sophisticated ClickFix technique that combines phishing and social engineering to steal cryptocurrency wallet details, browser credentials, and sensitive personal data. The Odyssey Stealer malware, discovered by X-Labs researchers in August 2025, represents an evolution of earlier ClickFix attacks that previously focused on […]
The post ClickFix macOS Malware Targets User Login Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
Kaaviya
CVE-2025-8841 | zlt2000 microservices-platform up to 6.0.0 FileController.java upload unrestricted upload
4 months 1 week ago
A vulnerability classified as critical was found in zlt2000 microservices-platform up to 6.0.0. Affected by this vulnerability is the function Upload of the file zlt-business/file-center/src/main/java/com/central/file/controller/FileController.java. The manipulation leads to unrestricted upload.
This vulnerability is known as CVE-2025-8841. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com
CVE-2025-8840 | jshERP up to 3.5 Endpoint deleteBatch ids improper authorization (Issue 126)
4 months 1 week ago
A vulnerability classified as critical has been found in jshERP up to 3.5. Affected is an unknown function of the file /jshERP-boot/user/deleteBatch of the component Endpoint. The manipulation of the argument ids leads to improper authorization.
This vulnerability is traded as CVE-2025-8840. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
Different than CVE-2025-7947.
vuldb.com
CVE-2025-8839 | jshERP up to 3.5 Endpoint addUser improper authorization (Issue 125)
4 months 1 week ago
A vulnerability was found in jshERP up to 3.5. It has been rated as critical. This issue affects some unknown processing of the file /jshERP-boot/user/addUser of the component Endpoint. The manipulation leads to improper authorization.
The identification of this vulnerability is CVE-2025-8839. The attack may be initiated remotely. Furthermore, there is an exploit available.
vuldb.com
Маск раскрыл секрет успеха в ИИ-гонке. Забудь про AGI, добавь побольше голых девушек и лайки польются
4 months 1 week ago
Илон Маск сделал Grok Imagine приманкой для мужской аудитории.
Submit #623100: zlt2000 https://github.com/zlt2000/microservices-platform <=6.0.0 Unrestricted Upload of File with Dangerous Type (CWE-434) [Accepted]
4 months 1 week ago
Submit #623100 / VDB-319375
ZAST.AI
Submit #622621: jishenghua https://github.com/jishenghua/jshERP <=3.5 IDOR [Duplicate]
4 months 1 week ago
Submit #622621 / VDB-319374
ez-lbz
Submit #622573: jishenghua https://github.com/jishenghua/jshERP <=3.5 IDOR(arbitrary account deletion) [Accepted]
4 months 1 week ago
Submit #622573 / VDB-319374
ez-lbz