Aggregator

A vulnerability described as problematic has been identified in Linux Kernel 2.2.13/2.3.18. This vulnerability affects unknown code of the component TTY Device Handler. Executing a manipulation can lead to improper privilege management. This vulnerability appears as CVE-1999-1341. The attack requires local access. There is no available exploit. Upgrading the affected component is recommended.

A vulnerability classified as critical has been found in SuSE Linux 6.1/6.2. This issue affects some unknown processing of the component cwdtools. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2000-0362. An attack has to be approached locally. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in SuSE Linux 6.1/6.2. Impacted is an unknown function of the file /tmp of the component cwdtools. The manipulation results in improper privilege management. This vulnerability is known as CVE-2000-0363. Attacking locally is a requirement. Furthermore, an exploit is available. Upgrading the affected component is advised.

A vulnerability, which was classified as problematic, was found in Linux Kernel. The impacted element is an unknown function of the component ypserv. Such manipulation leads to improper privilege management. This vulnerability is uniquely identified as CVE-1999-0901. Local access is required to approach this attack. No exploit exists. You should upgrade the affected component.

A vulnerability has been found in Linux Kernel and classified as problematic. This affects an unknown function of the component ypserv. Performing a manipulation results in improper privilege management. This vulnerability was named CVE-1999-0902. The attack needs to be approached locally. There is no available exploit. The affected component should be upgraded.

A vulnerability was found in Zeus Technologies Zeus Web Server 3.3.1/3.3.2. It has been classified as critical. Affected is an unknown function of the component Search Engine. The manipulation of the argument filename leads to improper privilege management. This vulnerability is referenced as CVE-1999-0883. Remote exploitation of the attack is possible. No exploit is available. Upgrading the affected component is recommended.

A vulnerability was found in Zeus Technologies Zeus Web Server 3.3.1/3.3.2. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Administration Interface. The manipulation results in missing encryption of sensitive data. This vulnerability is identified as CVE-1999-0884. The attack can be executed remotely. There is not any exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in BlueFace Falcon Web Server 1.0.1006. It has been rated as problematic. Affected by this issue is some unknown functionality. This manipulation causes path traversal. This vulnerability is tracked as CVE-1999-0881. The attack is possible to be carried out remotely. No exploit exists. Upgrading the affected component is advised.

Исследователи показали, как режим Express Transit помогает обойти обычную защиту и провести платеж без разблокировки смартфона.

A vulnerability classified as critical was found in MaxD Lightning Module 4.43/4.44 on OpenCart. This issue affects some unknown processing. Executing a manipulation of the argument li_op/md can lead to deserialization. The identification of this vulnerability is CVE-2025-0974. The attack may be launched remotely. Furthermore, there is an exploit available. Upgrading the affected component is advised.

在周日（4 月 19 日）举行的 2026 北京亦庄人形机器人半程马拉松赛上，机器人首次跑赢了人类半马世界纪录，前三名成绩全部优于人类纪录。荣耀旗下的齐天大圣队、雷霆闪电队、星火燎原队分别夺得冠军、亚军、季军，净用时分别为 50 分 26 秒、50 分 56 秒、53 分 01 秒，均优于乌干达名将基普利莫在今年 3 月里斯本半程马拉松赛中创造的 57 分 20 秒人类男子半马世界纪录。这一成绩与去年相比进步显著：一年前在亦庄举行的首届人形机器人半程马拉松上，天工队的人形机器人以 2 小时 40 分 42 秒的成绩夺冠。一年后，参赛队伍数量从 20 支增至百余支，是去年的五倍。整体完赛成绩大幅提升，人形机器人续航更稳、步态更顺、算法更稳。途中仍有部分机器人摔倒，或撞上赛道护栏。技术层面同样有进步：去年工程师们还可以跟着机器人一路小跑“陪跑"，今年很多机器人的速度大幅提升，工作人员不得不改坐高尔夫球车跟在后面。去年，天工是赛场上唯一采用"半自主"方式参赛的选手，其余几乎全部依赖遥控。今年，约四成队伍已实现自主导航。为鼓励这一趋势，赛事规则规定遥控操作组成绩须乘以 1.2 加权系数，变相惩罚依赖人工遥控的队伍。

深度解析Prompt注入攻击原理，通过真实复现案例揭示攻击者如何劫持AI Agent

第三方 SDK 重大漏洞曝光：超 3000 万加密