CVE-2020-36527
A vulnerability, which was classified as problematic, has been found in Server Status. This issue affects some unknown processing of the component HTTP Status/SMTP Status. The manipulation leads to cross…
Towards a Security Stress-Test for Cloud Configurations. (arXiv:2205.14498v2 [cs.CR] UPDATED)
Securing cloud configurations is an elusive task, which is left up to system administrators who have to base their decisions on “trial and error” experimentations or by observing good practices…
CVE-2020-36528
A vulnerability, which was classified as critical, was found in Platinum Mobile 1.0.4.850. Affected is /MobileHandler.ashx which leads to broken access control. The attack requires authentication. Upgrading to version 1.0.4.851…
Effectiveness and Scalability of Fuzzing Techniques in CI/CD Pipelines. (arXiv:2205.14964v2 [cs.SE] UPDATED)
Fuzzing has proven to be a fundamental technique to automated software testing but also a costly one. With the increased adoption of CI/CD practices in software development, a natural question…
CVE-2020-36529
A vulnerability classified as critical has been found in SevOne Network Management System up to 5.7.2.22. This affects the file traceroute.php of the Traceroute Handler. The manipulation leads to privilege…
Stopping Silent Sneaks: Defending against Malicious Mixes with Topological Engineering. (arXiv:2206.00592v3 [cs.CR] UPDATED)
Mixnets are a fundamental type of anonymous communication system and recent academic research has made progress in designing Mixnets that are scalable, have sustainable communication/computation overhead, and/or provable security. We…
CVE-2020-36530
A vulnerability classified as critical was found in SevOne Network Management System up to 5.7.2.22. This vulnerability affects the Alert Summary. The manipulation leads to sql injection. The attack can…
Per-Instance Privacy Accounting for Differentially Private Stochastic Gradient Descent. (arXiv:2206.02617v2 [cs.LG] UPDATED)
Differentially private stochastic gradient descent (DP-SGD) is the workhorse algorithm for recent advances in private deep learning. It provides a single privacy guarantee to all datapoints in the dataset. We…
CVE-2020-36531
A vulnerability, which was classified as critical, has been found in SevOne Network Management System up to 5.7.2.22. This issue affects the Device Manager Page. An injection leads to privilege…
Robust Adversarial Attacks Detection based on Explainable Deep Reinforcement Learning For UAV Guidance and Planning. (arXiv:2206.02670v2 [cs.LG] UPDATED)
The danger of adversarial attacks to unprotected Uncrewed Aerial Vehicle (UAV) agents operating in public is growing. Adopting AI-based techniques and more specifically Deep Learning (DL) approaches to control and…