Microsoft fixes AutoGen Studio flaw that enabled code execution

A vulnerability chain dubbed AutoJack in Microsoft's AutoGen Studio interface for prototyping AI agents could let attackers ...
CSOonline

QNAP fixes critical security holes in its networking solutions

The critical flaws impacting QNAP’s NAS and QuRouter solutions could allow remote attackers to execute arbitrary commands on compromised systems. Network and software solutions provider QNAP — whose ...
Guru3D.com

Ubiquiti Urges Immediate Updates Following Root Access Exploit Discovery

Security researchers have disclosed a critical vulnerability chain affecting Ubiquiti's UniFi OS Server platform that could allow attackers to bypass authentication controls, execute arbitrary ...
CSOonline

Critical PyTorch flaw puts sensitive AI data at risk

Researchers have discovered a critical flaw in PyTorch’s distributed RPC system, allowing attackers to execute arbitrary commands on the OS and steal AI training data. Popular machine learning ...
Bleeping Computer

Ivanti warns of Connect Secure zero-days exploited in attacks

Ivanti has disclosed two Connect Secure (ICS) and Policy Secure (IPS) zero-days exploited by suspected Chinese hackers in the wild that can let remote attackers execute arbitrary commands on targeted ...
InfoWorld

Critical GitHub RCE bug exposed millions of repositories

The now‑patched flaw allowed authenticated users to execute arbitrary code via crafted git push requests, affecting GitHub.com and Enterprise Server. A critical remote code execution (RCE) ...