all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

An Empirical Study of Automated Vulnerability Localization with Large Language Models

Add to bookmarks
April 2, 2024, 7:11 p.m. | Jian Zhang, Chong Wang, Anran Li, Weisong Sun, Cen Zhang, Wei Ma, Yang Liu

cs.CR updates on arXiv.org arxiv.org

arXiv:2404.00287v1 Announce Type: cross
Abstract: Recently, Automated Vulnerability Localization (AVL) has attracted much attention, aiming to facilitate diagnosis by pinpointing the lines of code responsible for discovered vulnerabilities. Large Language Models (LLMs) have shown potential in various domains, yet their effectiveness in vulnerability localization remains underexplored. In this work, we perform the first comprehensive study of LLMs for AVL. Our investigation encompasses 10+ leading LLMs suitable for code analysis, including ChatGPT and various open-source models, across three architectural types: encoder-only, …

arxiv attention automated code cs.cr cs.se diagnosis domains language language models large llms localization responsible study vulnerabilities vulnerability work

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

Why You Should Not Trust Interpretations in Machine Learning: Adversarial Attacks on Partial Dependence Plots 22 hours ago | arxiv.org
adoption adversarial adversarial attacks artificial +22
Sui Lutris: A Blockchain Combining Broadcast and Consensus 22 hours ago | arxiv.org
agreement arxiv blockchain broadcast +12
Jolteon and Ditto: Network-Adaptive Efficient Consensus with Asynchronous Fallback 22 hours ago | arxiv.org
arxiv asynchronous blockchains clear +19
Noisy Measurements Are Important, the Design of Census Products Is Much More Important 22 hours ago | arxiv.org
arxiv asking august call +19
Graphene: Infrastructure Security Posture Analysis with AI-generated Attack Graphs 22 hours ago | arxiv.org
analysis arxiv assessment attack +31
REED: Chiplet-Based Accelerator for Fully Homomorphic Encryption 22 hours ago | arxiv.org
accelerator accelerators address application +14
Evaluation Methodologies in Software Protection Research 22 hours ago | arxiv.org
arms arxiv assets attackers +20
SoK: Rowhammer on Commodity Operating Systems 22 hours ago | arxiv.org
academia access arxiv attacks +17
Quantum cryptographic protocols with dual messaging system via 2D alternate quantum walks and genuine single … 22 hours ago | arxiv.org
alternate arxiv can cond-mat.dis-nn +17

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Information Security Specialist, Sr. (Container Hardening)

@ Rackner | San Antonio, TX
View on infosec-jobs.com

Principal Security Researcher (Advanced Threat Prevention)

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

EWT Infosec | IAM Technical Security Consultant - Manager

@ KPMG India | Bengaluru, Karnataka, India
View on infosec-jobs.com

Security Engineering Operations Manager

@ Gusto | San Francisco, CA; Denver, CO; Remote
View on infosec-jobs.com

Network Threat Detection Engineer

@ Meta | Denver, CO | Reston, VA | Menlo Park, CA | Washington, DC
View on infosec-jobs.com
View more jobs