all InfoSec news
Prompt Injection Flaw in Vanna AI Exposes Databases to RCE Attacks
June 27, 2024, 10:04 a.m. | info@thehackernews.com (The Hacker News)
The Hacker News thehackernews.com
The vulnerability, tracked as CVE-2024-5565 (CVSS score: 8.1), relates to a case of prompt injection in the "ask" function that could be exploited to trick the library into executing arbitrary
ask attacks case code code execution cve cve-2024 cvss cvss score cybersecurity databases exploited flaw function high injection injection flaw library prompt prompt injection rce rce attacks remote code remote code execution researchers score security security flaw severity techniques vulnerability
More from thehackernews.com / The Hacker News
Jobs in InfoSec / Cybersecurity
Senior Systems Engineer - AWS
@ CACI International Inc | 999 REMOTE
Managing Consultant / Consulting Director / Engagement Lead in Cybersecurity Consulting
@ Marsh McLennan | Toronto - Bremner
Specialist , Fraud Investigation and SecOps
@ Concentrix | Bulgaria - Work at Home
Data Engineer, Mid
@ Booz Allen Hamilton | USA, CA, San Diego (1615 Murray Canyon Rd)
Manager, Risk Management
@ Manulife | CAN, Ontario, Toronto, 200 Bloor Street East
Regional Channel Manager (Remote - West)
@ Dell Technologies | Remote - California, United States (All Other)