CVE-2022-28881
A Denial-of-Service (DoS) vulnerability was discovered in F-Secure Atlant whereby the aerdl.dll component used in certain WithSecure products unpacker function crashes which leads to scanning engine crash. The exploit can…
Privacy-Aware Adversarial Network in Human Mobility Prediction. (arXiv:2208.05009v1 [cs.LG])
As mobile devices and location-based services are increasingly developed in different smart city scenarios and applications, many unexpected privacy leakages have arisen due to geolocated data collection and sharing. User…
CVE-2022-29090
Dell Wyse Management Suite 3.6.1 and below contains a Sensitive Data Exposure vulnerability. A low privileged malicious user could potentially exploit this vulnerability in order to obtain credentials. The attacker…
Adversarial Machine Learning-Based Anticipation of Threats Against Vehicle-to-Microgrid Services. (arXiv:2208.05073v1 [cs.CR])
In this paper, we study the expanding attack surface of Adversarial Machine Learning (AML) and the potential attacks against Vehicle-to-Microgrid (V2M) services. We present an anticipatory study of a multi-stage…
CVE-2022-29804
Incorrect conversion of certain invalid paths to valid, absolute paths in Clean in path/filepath before Go 1.17.11 and Go 1.18.3 on Windows allows potential directory traversal attack.
Reducing Exploitability with Population Based Training. (arXiv:2208.05083v1 [cs.LG])
Self-play reinforcement learning has achieved state-of-the-art, and often superhuman, performance in a variety of zero-sum games. Yet prior work has found that policies that are highly capable against regular opponents…
Collaborative Feature Maps of Networks and Hosts for AI-driven Intrusion Detection. (arXiv:2208.05085v1 [cs.CR])
Intrusion Detection Systems (IDS) are critical security mechanisms that protect against a wide variety of network threats and malicious behaviors on networks or hosts. As both Network-based IDS (NIDS) or…
CVE-2022-30580
Code injection in Cmd.Start in os/exec before Go 1.17.11 and Go 1.18.3 allows execution of any binaries in the working directory named either “..com” or “..exe” by calling Cmd.Run, Cmd.Start,…
Prior Knowledge based Advanced Persistent Threats Detection for IoT in a Realistic Benchmark. (arXiv:2208.05089v1 [cs.CR])
The number of Internet of Things (IoT) devices being deployed into networks is growing at a phenomenal level, which makes IoT networks more vulnerable in the wireless medium. Advanced Persistent…
CVE-2022-30629
Non-random values for ticket_age_add in session tickets in crypto/tls before Go 1.17.11 and Go 1.18.3 allow an attacker that can observe TLS handshakes to correlate successive connections by comparing ticket…