Everything you care about in one place
Follow feeds: blogs, news, RSS and more. An effortless way to read and digest content of your choice.
Get Feederkb.cert.org
CERT Recently Published Vulnerability Notes
Get the latest updates from CERT Recently Published Vulnerability Notes directly as they happen.
Follow now 122 followers
Latest posts
Last updated 11 days ago
VU#148244: PandasAI interactive prompt function can be exploited to run arbitrary Python code through prompt injection, which can lead to remote code execution (RCE)
11 days ago
Overview PandasAI, an open source project by SinaptikAI, has been found vulnerable...
VU#733789: ChatGPT-4o contains security bypass vulnerability through time and search functions called "Time Bandit"
23 days ago
Overview ChatGPT-4o contains a jailbreak vulnerability called "Time Bandit" that allows an...
VU#199397: Insecure Implementation of Tunneling Protocols (GRE/IPIP/4in6/6in4)
about 1 month ago
Overview Tunnelling protocols are an essential part of the Internet and form...
VU#952657: Rsync contains six vulnerabilities
about 1 month ago
Overview Rsync, a versatile file-synchronizing tool, contains six vulnerabilities present within versions...
VU#529659: Howyar Reloader UEFI Bootloader Vulnerable to Unsigned Software Execution
about 1 month ago
Overview The Howyar UEFI Application "Reloader" (32-bit and 64-bit), distributed as part...
VU#417980: Implementations of UDP-based application protocols are vulnerable to network loops
2 months ago
Overview A novel traffic-loop vulnerability has been identified against certain implementations of...
VU#488902: CPU hardware utilizing speculative execution may be vulnerable to speculative race conditions
2 months ago
Overview A Speculative Race Condition (SRC) vulnerability that impacts modern CPU architectures...
VU#421644: HTTP/2 CONTINUATION frames can be utilized for DoS attacks
2 months ago
Overview HTTP allows messages to include named fields in both header and...
VU#312260: Use-after-free vulnerability in lighttpd version 1.4.50 and earlier
2 months ago
Overview A use-after-free vulnerability in lighttpd in versions 1.4.50 and earlier permits...
VU#238194: R Programming Language implementations are vulnerable to arbitrary code execution during deserialization of .rds and .rdx files
2 months ago
Overview A vulnerability in the R language that allows for arbitrary code...
VU#253266: Keras 2 Lambda Layers Allow Arbitrary Code Injection in TensorFlow Models
2 months ago
Overview Lambda Layers in third party TensorFlow-based Keras models allow attackers to...
VU#163057: BMC software fails to validate IPMI session.
2 months ago
Overview The Intelligent Platform Management Interface (IPMI) implementations in multiple manufacturer's Baseboard...