Aggregator

谷雨 | 春归谷雨 安护万家

网络安全和信息化事关党的长期执政，事关国家长治久安，事关经济社会发展和人民群众福祉。

OpenClaw让AI Agent拥有强大的执行力，但万一它手滑删库、外泄API Key、被Prompt注入……谁来兜底？ 斗象科技推出的开源项目「ClawVault」龙虾保险箱，给出了答案！   简单来说，ClawVault就像给OpenClaw的“机械爪”戴上了一双带传感器的智能手套——既保留AI的灵活性，又杜绝任何越界操作。   📦安装教程 ClawVault延续了OpenClaw的轻量化设计，适配Python3.10+环境，已安装 pip、venv、curl、git并部署好OpenClaw的开发者，只需简单几步即可完成安装配置： 1️⃣克隆并进入项目文件夹 git clone https://github.com/tophant-ai/ClawVault&& cd ClawVault 2️⃣执行安装脚本 ./install.sh 3️⃣配置拦截域名 编辑~/.ClawVault/config.yaml，添加需防护的AI模型/代理商域名 4️⃣启动项目 ./scripts/start.sh并访问Web控制台：http://127.0.0.1:8766   部署完成后，可以在Web仪表盘实时查看威胁检测、token使用、Agent状态、扫描记录，还能通过Quick Test快速验证敏感信息检测、注入攻击防护等能力。   🚀立即体验 https://github.com/tophant-ai/ClawVault

Оказывается, даже в самых защищённых системах всегда найдётся лазейка для опытных аналитиков.

A vulnerability marked as critical has been reported in H3C Magic B1 up to 100R004. Affected by this vulnerability is the function SetMobileAPInfoById of the file /goform/aspForm. Performing a manipulation of the argument param results in buffer overflow. This vulnerability is known as CVE-2026-6581. Remote exploitation of the attack is possible. Furthermore, an exploit is available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability classified as problematic was found in TransformerOptimus SuperAGI up to 0.0.14. This vulnerability affects the function update_user of the file superagi/controllers/user.py of the component User Update Endpoint. The manipulation of the argument user_id results in authorization bypass. This vulnerability was named CVE-2026-6584. The attack may be performed from remote. In addition, an exploit is available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability, which was classified as problematic, has been found in TransformerOptimus SuperAGI up to 0.0.14. This issue affects the function update_organisation of the file superagi/controllers/organisation.py of the component Organisation Update Endpoint. This manipulation of the argument organisation_id causes authorization bypass. The identification of this vulnerability is CVE-2026-6585. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability classified as problematic has been found in TransformerOptimus SuperAGI up to 0.0.14. This affects the function delete_api_key/edit_api_key of the file superagi/controllers/api_key.py of the component API Key Management Endpoint. The manipulation leads to authorization bypass. This vulnerability is uniquely identified as CVE-2026-6583. The attack is possible to be carried out remotely. Moreover, an exploit is present. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability, which was classified as critical, was found in TransformerOptimus SuperAGI up to 0.0.14. Impacted is the function get_budget/update_budget of the file superagi/controllers/budget.py of the component Budget Endpoint. Such manipulation leads to authorization bypass. This vulnerability is referenced as CVE-2026-6586. It is possible to launch the attack remotely. Furthermore, an exploit is available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability has been found in vibrantlabsai RAGAS up to 0.4.3 and classified as critical. The affected element is the function _try_process_local_file/_try_process_url of the file src/ragas/metrics/collections/multi_modal_faithfulness/util.py of the component Collections Module. Performing a manipulation of the argument retrieved_contexts results in server-side request forgery. This vulnerability is identified as CVE-2026-6587. The attack can be initiated remotely. Additionally, an exploit exists. The security patch for CVE-2025-45691 was applied to a different module only. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability was found in ComfyUI up to 0.13.0. It has been classified as problematic. This affects the function create_origin_only_middleware of the file server.py. The manipulation leads to cross-site request forgery. This vulnerability is listed as CVE-2026-6589. The attack may be initiated remotely. In addition, an exploit is available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability was found in ComfyUI up to 0.13.0. It has been declared as critical. This impacts the function get_model_preview of the file app/model_manager.py of the component Model Preview Endpoint. The manipulation results in path traversal. This vulnerability is cataloged as CVE-2026-6590. The attack may be launched remotely. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability was found in ComfyUI up to 0.13.0. It has been rated as critical. Affected is the function folder_paths.get_annotated_filepath of the file folder_paths.py of the component LoadImage Node. This manipulation of the argument Name causes path traversal. This vulnerability is registered as CVE-2026-6591. Remote exploitation of the attack is possible. Furthermore, an exploit is available. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability categorized as problematic has been discovered in ComfyUI up to 0.13.0. Affected by this vulnerability is the function getuserdata of the file app/user_manager.py of the component userdata Endpoint. Such manipulation leads to cross site scripting. This vulnerability is documented as CVE-2026-6592. The attack can be executed remotely. Additionally, an exploit exists. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability identified as problematic has been detected in ComfyUI up to 0.13.0. Affected by this issue is some unknown functionality of the file server.py of the component View Endpoint. Performing a manipulation results in cross site scripting. This vulnerability is reported as CVE-2026-6593. The attack is possible to be carried out remotely. Moreover, an exploit is present. The vendor was contacted early about this disclosure but did not respond in any way.

A vulnerability labeled as problematic has been found in brikcss merge up to 1.3.0. This affects an unknown part. Executing a manipulation of the argument __proto__/constructor.prototype/prototype can lead to improperly controlled modification of object prototype attributes. This vulnerability appears as CVE-2026-6594. The attack may be performed from remote. There is no available exploit. The vendor was contacted early about this disclosure but did not respond in any way.

NSA和GCHQ已经使用Mythos Preview一段时间了

Vercel has disclosed a significant security incident after threat actors gained unauthorized access to internal systems, with a hacker group reportedly attempting to sell stolen data for $2 million on underground forums. Vercel, one of the most widely used frontend cloud platforms powering millions of developer deployments, confirmed the breach in an official security bulletin […]

The post Vercel Confirms Data Breach — Hackers Claim Access to Internal Systems appeared first on Cyber Security News.

风险从数字走向物理，重新审视真实环境下的安全体系建设