A max-severity vulnerability in the latest Python FastAPI version of the ChromaDB project allows unauthenticated attackers to ...

An unpatched vulnerability in ChromaDB could be exploited without authentication for remote code execution and server ...

The Claw Chain OpenClaw vulnerabilities can be abused to steal credentials, escape the sandbox, and plant backdoors on the ...

The four flaws in the rapidly growing AI agent framework allow attackers to steal credentials, escalate privileges, and ...

A set of four security vulnerabilities in OpenClaw, collectively labeled the “Claw Chain,” gives attackers a step-by-step ...

Cyera disclosed four chainable vulnerabilities in OpenClaw that turn a compromised agent into a persistent backdoor. Patches are available.

TL;DR: Researchers recently disclosed CVE-2026-42945, a critical heap-based buffer overflow vulnerability affecting both NGINX Open Source and NGINX Plus. The flaw exists within the ...

Security researchers at Sysdig recorded the first exploitation attempt against CVE-2026-44338 — a missing-authentication flaw ...

A newly disclosed authentication bypass flaw (CVE-2026-44338) in PraisonAI drew near-instant probing, exposing risks from ...

Ollama, the open-source tool that has become the default way for developers and companies to run large language models on ...

Meari IoT flaws reportedly exposed baby monitor images, camera activity, and device data across more than 1 million connected ...

While previous assessments categorized AI-assisted cyberattacks as experimental, current data suggests generative AI is now a mature, industrialized component of offensive operations.