Software Engineering Institute
Computer Emergency Readiness Team
- VU#726882: Paragon Partition Manager contains five memory vulnerabilities within its BioNTdrv.sys driver that allow for privilege escalation and denial-of-service (DoS) attacks
- VU#148244: PandasAI interactive prompt function can be exploited to run arbitrary Python code through prompt injection, which can lead to remote code execution (RCE)
- VU#733789: ChatGPT-4o contains security bypass vulnerability through time and search functions called “Time Bandit”
- VU#199397: Insecure Implementation of Tunneling Protocols (GRE/IPIP/4in6/6in4)
- VU#952657: Rsync contains six vulnerabilities
- VU#529659: Howyar Reloader UEFI Bootloader Vulnerable to Unsigned Software Execution
- VU#164934: PDQ Deploy allows reuse of deleted credentials that can compromise a device and facilitate lateral movement
- VU#123336: Vulnerable WiFi Alliance example code found in Arcadyan FMIMG51AX000J