GovInfoSecurity

Flaw in AI Libraries Exposes Models to Remote Code Execution

Researchers discovered remote code execution vulnerabilities in three AI libraries from Apple, Salesforce and Nvidia used by ...

US government told to patch serious Gogs security issue or face attack

The US Cybersecurity and Infrastructure Security Agency (CISA) has added a new bug to its Known Exploited Vulnerabilities ...
SecurityWeek

Chrome 144, Firefox 147 Patch High-Severity Vulnerabilities

Chrome 144 and Firefox 147 were released with patches for a total of 26 vulnerabilities, including high-severity code ...

CISA orders feds to patch Gogs RCE flaw exploited in zero-day attacks

CISA has ordered government agencies to secure their systems against a high-severity Gogs vulnerability that was exploited in ...

A critical n8n flaw has been discovered - here's how to stay safe

The vulnerability was fixed in n8n version 1.111.0, with the addition of a task-runner-based native Python implementation ...

Critical vulnerability in automation tool: n8n allows code smuggling

The popular tool for creating no-code workflows has four critical vulnerabilities, one with the highest score. Admins should ...

Signal Creator's New AI Assistant Won’t Read Your Chats—Not Even the Admins Can

Signal creator Moxie Marlinspike has launched Confer AI. This is claimed to be truly private and offers hardware-based ...

Trend Micro patches critical flaws in its Apex Central software

The bugs could allow an attacker to take over an affected system for their own purposes, or to crash the software, causing a ...
CSO Online

High-severity bug in Broadcom software enables easy WiFi denial-of-service

Discovered during fuzz testing, the bug affects Broadcom chipset software and requires a manual router reboot after each ...
CSO Online

Iran-linked MuddyWater APT deploys Rust-based implant in latest campaign

Iran-linked advanced persistent threat group MuddyWater has deployed a Rust-based implant in an ongoing espionage campaign ...