MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
tools
Recherche

AI Bug Bounty Program Finds 34 Flaws in Open-Source Tools

dimanche 3 novembre 2024, 13:34 , par Slashdot
AI Bug Bounty Program Finds 34 Flaws in Open-Source Tools
Slashdot reader spatwei shared this report from SC World:

Nearly three dozen flaws in open-source AI and machine learning (ML) tools were disclosed Tuesday as part of [AI-security platform] Protect AI's huntr bug bounty program.

The discoveries include three critical vulnerabilities: two in the Lunary AI developer toolkit [both with a CVSS score of 9.1] and one in a graphical user interface for ChatGPT called Chuanhu Chat. The October vulnerability report also includes 18 high-severity flaws ranging from denial-of-service to remote code execution... Protect AI's report also highlights vulnerabilities in LocalAI, a platform for running AI models locally on consumer-grade hardware, LoLLMs, a web UI for various AI systems, LangChain.js, a framework for developing language model applications, and more.
In the article, Protect AI's security researchers point out that these open-source tools are 'downloaded thousands of times a month to build enterprise AI Systems.'

The three critical vulnerabilties have already been addressed by their respective companies, according to the article.

Read more of this story at Slashdot.
Lire la suite sur Slashdot
https://it.slashdot.org/story/24/11/03/0123205/ai-bug-bounty-program-finds-34-flaws-in-open-source-t...

Voir aussi

tools Windows on Arm update could open the door to more gaming PC World 6 Nov
flaws 5 Best AI Detection Tools for Different Use Cases eWeek 6 Nov
open-source Google Has No Duty To Refund Gift Card Scam Victims, Judge Finds Slashdot 6 Nov
ai's Outlook will crash if you open too many emails at once. Here’s why PC World 6 Nov
protect Scumbag puts 'stolen' Nokia source code, SSH and RSA keys, more up for sale TheRegister 6 Nov
bug Criminals open DocuSign's Envelope API to make BEC special delivery TheRegister 5 Nov
bounty ‘Windows Intelligence’: Microsoft might be rebranding its Windows AI tools PC World 5 Nov
program VMware by Broadcom finds friends to advance its private cloud and AI visions TheRegister 5 Nov
report Stay alert and keep grooving with open-ear wireless headphones BoingBoing 5 Nov
three Kitten Space Agency : un héritier de Kerbal Space Program par le créateur de DayZ GameKult 4 Nov
systems Comment Netscape survit dans les logiciels d'aujourd'hui : 30 ans à façonner le web, l'open source et les entreprises de la tech ZDNet.fr 4 Nov
critical Python Overtakes JavaScript on GitHub, Annual Survey Finds Slashdot 4 Nov
vulnerabilities New 'Open Source AI Definition' Criticized for Not Opening Training Data Slashdot 3 Nov
article ASWF: the Open Source Foundation Run By the Folks Who Give Out Oscars Slashdot 3 Nov
platform [$] OSI board AMA at All Things Open LWN.net 1 Nov
open CNN finds a useful idiot BoingBoing 1 Nov
source All the best Office tools, none of the recurring costs BoingBoing 1 Nov
finds Uranus' Moon Miranda May Have an Ocean Beneath Its Surface, Study Finds Slashdot 1 Nov
tools Libre et open source express: April, Pl@ntNet, Richard Stallman, Filigran ZDNet.fr 1 Nov
flaws [$] The Overture open-mapping project LWN.net31 Oct
News copyright owned by their original publishers | Copyright © 2004 - 2024 Zicos / 440Network
Date Actuelle
jeu. 7 nov. - 06:36 CET