SMInject: Specious Malignant Injection Attacks With Semantically-Enhanced Tokens in Cross-Modal Retrieval
Summary
Researchers developed SMInject, a new type of attack that tricks multimodal AI models (systems that process both text and images together) by injecting deceptive instructions that exploit how different data types relate to each other. The attack is designed to be harder to detect than previous methods and achieves higher success rates while still keeping the model appearing to work normally.
Classification
Related Issues
CVE-2024-37052: Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling
CVE-2026-30308: In its design for automatic terminal command execution, HAI Build Code Generator offers two options: Execute safe comman
Original source: http://ieeexplore.ieee.org/document/11433760
First tracked: May 14, 2026 at 08:01 PM
Classified by LLM (prompt v3) · confidence: 85%