Filter

×
Active Filters Clear All
Keyword: 攻击链 ×
4 Total Reports
Other Other 2026-07-12

OpenClaw Vulnerabilities Reveal Host Execution Environment as New Attack Surface for AI Assistants

Three critical vulnerabilities (CVSS 8.8/8.4) in OpenClaw's personal AI assistant enable command injection and path traversal, leading to host RCE. This confirms the host execution environment as a new attack surface for AI assistants, blending traditional exploits with AI agent risks.

Cisco Other 2026-06-02

Cisco Live 2026: AI Defense Upgrades with Policy Studio, Adaptive Red Teaming, Agent Supply Chain Security

At Cisco Live 2026, Cisco unveiled AI Defense upgrades: adaptive red teaming, Policy Studio for natural language policy, and agent supply chain security with CI/CD integration. It also launched AgenticOps autonomous network operations and native integrations with Amazon Bedrock, Google ADK, LangChain, aiming to secure multi-framework agent environments.

NVIDIA Other 2026-05-16

NVIDIA CUDA Heap Overflow Exposes GPU Cloud Isolation Flaw: Driver-Level Security Must Move to Hardware

At Pwn2Own Berlin 2026, a heap overflow in NVIDIA CUDA Toolkit's NVVM compiler (CVE-2026-12839) enabled GPU cloud cross-tenant escape. The attack chain from malicious PTX to driver compromise to host kernel breaks current driver-level isolation, forcing a fundamental security architecture re-evaluation for shared GPU AI infrastructure.

Palo Alto Networks Other High Signal 2026-05-03

In-depth Analysis of CISA Agentic AI Security Guidelines

CISA released the world's first Agentic AI security deployment guidelines on May 1, 2026, marking a critical transition from theoretical discussions to mandatory compliance requirements.