All tracked items across vulnerabilities, news, research, incidents, and regulatory updates.
The Tutor LMS WordPress plugin (up to version 2.7.0) has a security flaw called IDOR (insecure direct object reference, where an attacker can access resources by guessing or manipulating ID numbers) that lets users with Instructor-level permissions delete any course without proper permission checks in the 'tutor_course_delete' function. This happens because the code doesn't validate which courses a user is allowed to delete.
A command injection vulnerability (a flaw that lets attackers run unauthorized commands) exists in the RunGptLLM class of the llama_index library version 0.9.47, which connects applications to language models. The vulnerability uses the eval function (a tool that executes text as code) unsafely, potentially allowing a malicious LLM provider to run arbitrary commands and take control of a user's machine.
A researcher examined browser remote debugging features as a potential method for stealing sensitive data like cookies, building on past work about cookie theft techniques. The post references Google's guidance on detecting browser data theft through Windows Event Logs and DPAPI (Data Protection API, a Windows system that encrypts sensitive information) calls, but focuses on exploring whether remote debugging could be used to bypass these detection methods.
CVE-2024-34440 is an unrestricted file upload vulnerability (a security flaw that lets users upload files without proper checks on file type) in the Jordy Meow AI Engine: ChatGPT Chatbot plugin affecting versions through 2.2.63. This vulnerability could potentially allow attackers to upload dangerous files to a system, but no severity score has been assigned yet.
CVE-2024-0100 is a vulnerability in NVIDIA Triton Inference Server for Linux that allows a user to corrupt system files through the tracing API (a feature that tracks how the server runs). Successfully exploiting this vulnerability could cause denial of service (making the system unavailable) and data tampering (unauthorized changes to data).
CVE-2024-0088 is a vulnerability in NVIDIA Triton Inference Server for Linux where a network user can trigger improper memory access through shared memory APIs, potentially causing denial of service (making a service unavailable) or data tampering. The vulnerability stems from out-of-bounds write errors, meaning the software tries to write data to memory locations it shouldn't access.
CVE-2024-0087 is a vulnerability in NVIDIA Triton Inference Server for Linux that allows a user to set the logging location to any file they choose, and if that file already exists, logs get added to it. This could allow an attacker to execute code, crash the system, gain elevated permissions, steal information, or modify data.
CVE-2024-1598 is a buffer overflow vulnerability (a memory safety bug where data overwrites adjacent memory) in Phoenix SecureCore for Intel Gemini Lake processors, specifically in how the system handles UEFI variables (low-level firmware settings). The vulnerability affects versions 4.1.0.1 through 4.1.0.566, but a patched version exists.
llama-cpp-python (Python bindings for llama.cpp, a tool for running AI models locally) has a vulnerability where it loads chat templates from model files without proper security checks. When these templates are processed using Jinja2 (a templating engine), an attacker can inject malicious code through a specially crafted model file, leading to remote code execution (the ability to run arbitrary commands on the victim's computer).
CVE-2023-33119 is a memory corruption vulnerability that occurs when loading a virtual machine (VM, a simulated computer running inside another computer) from a signed VM image that is not coherent in the processor cache (the fast memory where a processor stores copies of data). The vulnerability is related to a TOCTOU race condition (a timing flaw where data can change between when it is checked and when it is used).
SolidUI version 0.4.0 contains a bug where the file spaces_plugin/app.py has an unnecessary print statement that outputs an OpenAI key (a secret credential used to authenticate with OpenAI's services). This printed key could be captured in log files (records of system activity), potentially exposing the credential to unauthorized users.
Gradio (a framework for building web interfaces for machine learning models) before version 4.20 has a vulnerability on Windows where credentials can be unintentionally revealed. The issue stems from improper encoding or escaping of output (meaning the software doesn't properly clean or protect sensitive information before displaying it).
A vulnerability in sagemaker-python-sdk (a library for machine learning on Amazon SageMaker) allows OS command injection (running unauthorized system commands) if unsafe input is passed to the capture_dependencies function's requirements_path parameter, potentially letting attackers execute code remotely or disrupt service. The vulnerability affects versions before 2.214.3.
A vulnerability in the sagemaker-python-sdk library (used for machine learning on Amazon SageMaker) allows unsafe deserialization, where the NumpyDeserializer module can execute malicious code if it processes untrusted pickled data (serialized Python objects stored in a binary format). An attacker could exploit this to run arbitrary commands on a system or crash it.
A vulnerability in the Linux kernel's WireGuard (a VPN protocol implementation) netlink interface was fixed by changing how the code accesses device information. Instead of getting the device through a peer object (which could be NULL or invalid), the code now retrieves it from a context object, which is safer and faster.
A bug in the Linux kernel's ARM architecture code caused system crashes when the kernel tried to flush cache memory (clear temporary copies of data stored near the CPU) for reserved memory addresses that weren't mapped by the kernel. The problem occurred because an earlier change made pfn_valid() (a function that checks if a physical memory address is valid) too permissive, allowing it to accept reserved memory without proper verification.
CVE-2024-1726 is a flaw in RESTEasy Reactive (a framework for building web services in Quarkus) where security checks happen after the request data is processed, wasting resources. An attacker who knows the paths to POST, PUT, or PATCH endpoints can exploit this to cause a denial of service (DoS, making a service unavailable by overwhelming it with requests).
CVE-2023-5675 is a security flaw in Quarkus (a Java framework for building applications) where authorization checks are bypassed for REST API endpoints whose methods are defined in abstract classes or modified by extensions using annotation processors, if certain security settings are enabled. This means unauthorized users could potentially access protected API endpoints that should require authentication or specific permissions.
PyTorch versions before 2.2.0 contain an out-of-bounds read vulnerability (a bug where code tries to read data from memory outside its allowed range) in the flatbuffer_loader component, which is used for loading machine learning models on mobile devices. This vulnerability could potentially allow attackers to read sensitive information from memory or cause the program to crash.
Fix: This issue was fixed in version 0.10.13 of the llama_index library. Users should upgrade to version 0.10.13 or later.
NVD/CVE DatabaseLearnPress, a WordPress plugin for learning management systems, has a vulnerability (CVE-2024-4397) in versions up to 4.2.6.5 where the 'save_post_materials' function doesn't properly check file types before uploading. This means instructors and higher-level users could upload malicious files to the server, potentially leading to RCE (remote code execution, where attackers run arbitrary commands on a system they don't own).
Fix: Update to Phoenix SecureCore for Intel Gemini Lake version 4.1.0.567 or later.
NVD/CVE DatabaseFix: Update Gradio to version 4.20 or later.
NVD/CVE DatabaseFix: Upgrade to version 2.214.3 or later. Alternatively, users unable to upgrade should not override the "requirements_path" parameter of the capture_dependencies function and instead use the default value.
NVD/CVE DatabaseFix: Upgrade to sagemaker-python-sdk version 2.218.0 or later. If unable to upgrade, do not process pickled numpy object arrays from untrusted sources or data that could have been modified by others. Only use pickled numpy object arrays from sources you trust.
NVD/CVE DatabaseFix: Access the device through ctx->wg (the context object) instead of peer->device, and compare ctx->wg->peer_allowedips.seq with ctx->allowedips_seq to keep both references based in the same context object.
NVD/CVE DatabaseFix: Check if the PG_reserved flag (a marker indicating the memory page is reserved) was set before attempting to flush the cache for the address.
NVD/CVE DatabaseFix: Upgrade to PyTorch version 2.2.0 or later. A patch is available at https://github.com/pytorch/pytorch/commit/7c35874ad664e74c8e4252d67521f3986eadb0e6.
NVD/CVE Database