MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
tools
Search

AI Bug Bounty Program Finds 34 Flaws in Open-Source Tools

Sunday November 3, 2024. 01:34 PM , from Slashdot
AI Bug Bounty Program Finds 34 Flaws in Open-Source Tools
Slashdot reader spatwei shared this report from SC World:

Nearly three dozen flaws in open-source AI and machine learning (ML) tools were disclosed Tuesday as part of [AI-security platform] Protect AI's huntr bug bounty program.

The discoveries include three critical vulnerabilities: two in the Lunary AI developer toolkit [both with a CVSS score of 9.1] and one in a graphical user interface for ChatGPT called Chuanhu Chat. The October vulnerability report also includes 18 high-severity flaws ranging from denial-of-service to remote code execution... Protect AI's report also highlights vulnerabilities in LocalAI, a platform for running AI models locally on consumer-grade hardware, LoLLMs, a web UI for various AI systems, LangChain.js, a framework for developing language model applications, and more.
In the article, Protect AI's security researchers point out that these open-source tools are 'downloaded thousands of times a month to build enterprise AI Systems.'

The three critical vulnerabilties have already been addressed by their respective companies, according to the article.

Read more of this story at Slashdot.
Read more at Slashdot
https://it.slashdot.org/story/24/11/03/0123205/ai-bug-bounty-program-finds-34-flaws-in-open-source-t...

Related News

tools Windows on Arm update could open the door to more gaming PC WorldNov 6
flaws 5 Best AI Detection Tools for Different Use Cases eWeekNov 6
open-source Google Has No Duty To Refund Gift Card Scam Victims, Judge Finds SlashdotNov 6
ai's Outlook will crash if you open too many emails at once. Here’s why PC WorldNov 6
protect Scumbag puts 'stolen' Nokia source code, SSH and RSA keys, more up for sale TheRegisterNov 6
bug Criminals open DocuSign's Envelope API to make BEC special delivery TheRegisterNov 5
bounty Japan Space Program Gets Its Groove Back Akihabara NewsNov 5
program ‘Windows Intelligence’: Microsoft might be rebranding its Windows AI tools PC WorldNov 5
report VMware by Broadcom finds friends to advance its private cloud and AI visions TheRegisterNov 5
three Stay alert and keep grooving with open-ear wireless headphones BoingBoingNov 5
systems Python Overtakes JavaScript on GitHub, Annual Survey Finds SlashdotNov 4
critical New 'Open Source AI Definition' Criticized for Not Opening Training Data SlashdotNov 3
vulnerabilities ASWF: the Open Source Foundation Run By the Folks Who Give Out Oscars SlashdotNov 3
article [$] OSI board AMA at All Things Open LWN.netNov 1
platform CNN finds a useful idiot BoingBoingNov 1
open All the best Office tools, none of the recurring costs BoingBoingNov 1
finds Uranus' Moon Miranda May Have an Ocean Beneath Its Surface, Study Finds SlashdotNov 1
its [$] The Overture open-mapping project LWN.netOct 31
source OpenHCL: Understanding Microsoft’s open source paravisor InfoWorldOct 31
windows Record Levels of Heat-Related Deaths in 2023 Due To Climate Crisis, Report Finds SlashdotOct 31
News copyright owned by their original publishers | Copyright © 2004 - 2024 Zicos / 440Network
Current Date
Nov, Thu 7 - 06:50 CET