Monthly Archives: January 2026

AI and ML, Potential Risk of CVE

In-depth analysis of CVE-2025-33234: NVIDIA runx contains this vulnerability. (30-01-2026)

Leave a comment

Preface: According to the NVIDIA security bulletin for runx updated January 23, 2026 – A vulnerability (CVE‑2025‑33234) was found “during End of Support, but prior to End of Life.”

Background: An ML hyperparameter sweep is the automated process of systematically testing different combinations of hyperparameter values for a machine learning model to identify the configuration that yields the best performance. Hyperparameters are external settings that control the learning process, such as the learning rate or number of hidden layers, and must be set before training begins.

NVIDIA runx (Deep Learning Library) – This is a lightweight Python tool used for experiment management and hyperparameter sweeps.

Vulnerability details: CVE-2025-33234 NVIDIA runx contains a vulnerability where an attacker could cause a code injection. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.

Official announcement: Please refer to the link for details – https://nvidia.custhelp.com/app/answers/detail/a_id/5764

Appendix: runx is a local Python script for organizing your personal files, while NVIDIA Run:ai is a cloud-based infrastructure for managing hardware. To move from a local developer environment using runx to an enterprise environment using Run:ai, you must transition from a “local script” workflow to a “containerized” workflow.

Realistic examples where Run:ai WOULD be impacted (conceptual, not exploit details)

Scenario 1

runx injects malicious commands into a Python file your training code imports →
you copy the folder into Docker →
Run:ai runs that code →
the malicious code executes.

Scenario 2

runx generates a poisoned submit_cmd[.]sh or config file →
you include it in the Docker image →
your entrypoint or tools accidentally run it.

Scenario 3

runx modifies your dataset or preprocessing script →
container uses that script →
it runs inside Run:ai.

Reminder: These examples show pollution can travel only if you physically package it into the container.

Potential Risk of CVE

Retrospective: CVE‑2025‑59718 and CVE‑2025‑59719 both involve weaknesses in how FortiCloud handles SSO authentication and authorization, but they are not only about attribute/role mapping. They relate more broadly to how SSO assertions are validated and how privilege assignment occurs. (29-01-2026)

Leave a comment

Preface: You can summarize it as: “FortiCloud MUST fail SSO login when mandatory SAML attributes are missing, malformed, incorrect, unsigned, or expired. No fallback admin privileges are permitted under any circumstance”.

Background: A patch for CVE-2025-59718 and CVE-2025-59719 contains a vulnerability that allows attackers to bypass SSO login verification via a carefully crafted SAML message, provided FortiCloud SSO is enabled on the affected device. Fortinet patched these issues last month. Last week, reports surfaced of malicious SSO login activity reappearing on FortiGate devices that had been patched for the two vulnerabilities, with attackers logging in using administrator accounts. This activity is similar to events that occurred shortly after the disclosure of CVE-2025-59718 and CVE-2025-59719 vulnerabilities last December.

Security Focus: Both CVE‑2025‑59718 and CVE‑2025‑59719 sit in the same category:

SSO trust + authorization enforcement weaknesses

Specifically, both are tied to situations where:

• FortiCloud accepts an SSO/SAML login

• But does not sufficiently enforce privilege/role restrictions

• Potentially allowing unintended or elevated administrator access

This is why they appear similar — they arise during:

“FortiCloud SSO + IAM authorization step after login.”

They do involve the handling of SAML/SSO attributes, but the underlying issue is broader than “incorrect mapping.”

Vulnerability details:

CVE-2025-59718 -A improper verification of cryptographic signature vulnerability in Fortinet FortiOS 7.6.0 through 7.6.3, FortiOS 7.4.0 through 7.4.8, FortiOS 7.2.0 through 7.2.11, FortiOS 7.0.0 through 7.0.17, FortiProxy 7.6.0 through 7.6.3, FortiProxy 7.4.0 through 7.4.10, FortiProxy 7.2.0 through 7.2.14, FortiProxy 7.0.0 through 7.0.21, FortiSwitchManager 7.2.0 through 7.2.6, FortiSwitchManager 7.0.0 through 7.0.5 allows an unauthenticated attacker to bypass the FortiCloud SSO login authentication via a crafted SAML response message.

Ref: https://nvd.nist.gov/vuln/detail/CVE-2025-59718

CVE-2025-59719 -An improper verification of cryptographic signature vulnerability in Fortinet FortiWeb 8.0.0, FortiWeb 7.6.0 through 7.6.4, FortiWeb 7.4.0 through 7.4.9 may allow an unauthenticated attacker to bypass the FortiCloud SSO login authentication via a crafted SAML response message.

Ref: https://nvd.nist.gov/vuln/detail/CVE-2025-59719

Cell Phone (iPhone, Android, windows mobile), Potential Risk of CVE

Can we say that CVE-2025-0647 is not limited to the officially released affected products list? 28-01-2026

Leave a comment

Official Last updated: 14 Jan 2026

Preface: Smartphones using the ARM Cortex-X925 CPU core are primarily powered by the MediaTek Dimensity 9400 and Dimensity 9400+ chipsets. Key flagship devices featuring this processor include the OPPO Find X8 Pro, vivo X200 series, and Xiaomi 15T Pro. These phones utilize the chip’s “all-big-core” design for high-performance computing.

Dimensity 9400 and Dimensity 9400+ both chipsets use the same core components, including the ARM Cortex-X925 CPU, the Immortalis-G925 GPU, and the NPU 890. The primary difference lies in the clock speeds and certain enhanced connectivity/AI features of the Plus model.

Background: Cache prefetch predictionrestriction by context – This instruction prevents cache allocation predictions that predict execution addresses based on information gathered from earlier execution within a particular execution context. The actions of code in the target execution context or contexts appearing in program order before the instruction cannot exploitatively control cache prefetch predictions occurring after the instruction is complete and synchronized.

The Cortex-X925 supports Armv9’s Realm Management Extension (RME), which goes a step further than traditional TEE:

Confidential Computing: In addition to Android (Normal World) and TEE (Secure World), Armv9 introduces Realm World.

Realm Guest OS: A fully encrypted Guest OS (called Realm) can run on the Hypervisor (EL2), which even the Android Kernel cannot peek at.

Vulnerability details: An issue has been identified in some Arm-based CPUs which may allow a modified, untrusted guest OS to compromise the host in certain hypervisor environments.

Workaround: To workaround this issue, affected partners must perform TLB invalidation whenever a CPP RCTX instruction is executed. For details on how to do this, please see the Errata Notice for the relevant product.

Official announcement: Please refer to the link for details –

https://developer.arm.com/documentation/111546/1-0/?lang=en

AI and ML, Potential Risk of CVE

CVE-2025-13952: Advanced driver assistance systems (ADAS) and smartphones stay alert! (27-1-2026)

Leave a comment

Preface: The Unified Shading Cluster (USC) is a fundamental part of the PowerVR Rogue architecture and subsequent series. The USC acts as the central shader core, where vertex, fragment, and compute tasks are executed on unified hardware. It is central to PowerVR’s Tile-Based Deferred Rendering (TBDR) architecture. To write shader code for Imagination Technologies’ PowerVR architectures (often referred to in technical documentation alongside the USC or “Universal Shading Cluster” and Volcano shader cores), you use the OpenGL ES Shading Language (GLSL ES). 

Background: In the context of Imagination Technologies (IMG) GPUs, libusc (Unified Shading Cluster library) is a critical component of the GPU Driver Development Kit (DDK), primarily serving as the back-end compiler library for shader programs.

Is it possible to combine [.]frag in html web page?

The most common way is to place the shader code inside a <script> tag with a custom type attribute, such as x-shader/x-fragment. Browsers do not execute these scripts because they don’t recognize the type, but the text remains accessible via the Document Object Model (DOM).

The design flaw mentioned in CVE-2025-13952 typically occurs if:

•         User-controlled input is inserted into these <script> tags without sanitization.

•         Your code later injects shader text back into the DOM using innerHTML or evaluates it as JavaScript.

Vulnerability details: A web page that contains unusual GPU shader code is loaded from the Internet into the GPU compiler process triggers a write use-after-free crash in the GPU shader compiler library. On certain platforms, when the compiler process has system privileges this could enable further exploits on the device. The shader code contained in the web page executes a path in the compiler that held onto an out of date pointer, pointing to a freed memory object.

Official announcement: Please refer to the link for details.

https://www.tenable.com/cve/CVE-2025-13952

Potential Risk of CVE

CVE-2026-0828: Design weakness in Safetica’s ProcessMonitorDriver[.]sys kernel driver (26th Jan 2026)

Leave a comment

Preface: Safetica is a Data Loss Prevention (DLP) and Insider Risk Management (IRM) solution that stops data breaches and protects companies from insider threats.

Safetica was recognized as a “Trail Blazer” in the 2025 Data Loss Prevention Market Quadrant, indicating its growing influence and innovative, best-of-breed technology.

Safetica consistently ranks as a leader in G2’s Fall 2025 Reports, with numerous badges for Data Loss Prevention, User and Entity Behavior Analytics (UEBA), and Insider Threat Management.

Background: What is the missing piece in Safetica’s vulnerable driver—and what should be added to make this IOCTL handler secure—is proper access validation for the caller’s privileges.

The Missing Function: IoValidateDeviceIoControlAccess

This function ensures that the caller has the required access rights (e.g., FILE_READ_DATA, FILE_WRITE_DATA) before processing the IOCTL request. Without this check, any unprivileged user can send IOCTLs to the driver and trigger privileged operations.

Reference:

When creating a device object in the driver, you should use:

  • IoCreateDeviceSecure and specify SDDL (Security Descriptor Definition Language). This prevents unauthorized, low-privilege programs from arbitrarily calling your DeviceIoControl.
  • IoValidateDeviceIoControlAccess enforces the security descriptor you set with IoCreateDeviceSecure and SDDL, ensuring only authorized callers can execute privileged operations.

Vulnerability details: A vulnerabilty has been discovered in Safetica’s ProcessMonitorDriver.sys kernel driver. A local, unprivileged user can abuse a vulnerable IOCTL (Input/Output Control) path in the kernel driver to cause privileged termination of arbitrary system processes. IOCTL interfaces allow user-mode software to send commands into the kernel space so that the driver can perform specific privileged actions such as terminating processes. Terminating Safetica’s processes in endpoint detection and response and antivirus software can blind their clients’ security monitoring on their machines. Improper input sanitization and user validation mechanisms can manipulate the kernel driver into privilege escalation and DOS (denial of service).

Official announcement: Please refer to the link for details –

https://www.tenable.com/cve/CVE-2026-0828https://kb.cert.org/vuls/id/818729

Science

If 3I/ATLAS is a man-made object, and it approached Earth twice, on December 22, 2025, and January 22, 2026, what was its purpose? (24-01-2026)

Leave a comment

Preface: While NASA and the broader scientific community agree that 3I/ATLAS exhibits unusual features, they do not support the idea that it is an artificial object or that it has a “burning” core.

NASA’s official position, established through extensive observation using over 20 telescopes (including Hubble and James Webb), is that 3I/ATLAS is a natural interstellar comet.

One feature of 3I/ATLAS: Astronomers, including Avi Loeb, have observed that 3I/ATLAS has a rotation period (approximately 7.1 to 7.2 hours). This rotation can cause multiple gas jets to appear as if they are “sweeping” or creating a symmetric structure, but this is viewed as a natural physical process of outgassing rather than an engine or “burning” propulsion.

Scientists have determined that the evolution of 3I/ATLAS from a tailless object to one with a complex tail and “anti-tail” was driven by physical changes as it entered the inner solar system.

On December 22, 2025, the anti-tail of 3I/ATLAS did not point directly toward Earth.

What if it were an artificial object? But what would its purpose be?

In the popular reinterpretation of Sumerian myths, gold was needed to repair the atmosphere of the planet Nibiru because of its unique physical properties. The proponents of this theory suggest that the gold was used to repair a deteriorating ozone layer or a diminishing magnetic field. Gold’s high conductivity and chemical stability make it a theoretical candidate for planetary-scale geoengineering.

From a scientific theory point of view, the claim that gold is used to repair the ozone layer or magnetic fields is unproven in real-world science, though it is based on real physical properties that make it a subject of theoretical speculation.

The way: Gold nanoparticles could act as a catalyst or a physical shield to block UV radiation and allow the ozone layer to heal. While gold has remarkable properties for blocking heat and radiation, there is no scientific evidence or established theory supporting its use for repairing the ozone layer or a planet’s magnetic field.

Based on planetary formation science as of 2026, the following bodies are notable for their gold content:

  • Earth is currently the only planet where gold is known to exist in concentrated, “mineable” deposits on the surface.
  • In terms of absolute quantity, Jupiter likely contains the most gold atoms in the solar system. Because gold is a heavy element, it would have sunk into the planet’s massive, rocky-metallic core during formation. Scientists estimate Jupiter’s core could contain roughly 25 quadrillion tons of gold, though it is completely inaccessible due to extreme pressure and depth.

Summary: Therefore, this is why advanced civilizations send probes to search for targets.End of article

AI and ML, Potential Risk of CVE

CVE-2025-33228: About NVIDIA Nsight Systems (23rd Jan 2026)

Leave a comment

Preface: Nsight Systems is a tool for developers who need to understand the big picture of application execution on heterogeneous systems, especially in scenarios involving data transfer bottlenecks between the CPU and GPU or scaling across multiple nodes.

Background: In NVIDIA Nsight Systems, process_nsys_rep_cli[.]py is an internal Python script used primarily for post-processing and report generation from raw profiling data. 

While users typically interact with the nsys command-line tool, this script is invoked behind the scenes during the following operations.

Why This Might Connect to Nsight Systems?

Nsight Systems allows exporting [.]nsys-rep files and then processing them with scripts like process_nsys_rep_cli[.]py.

If the CLI or scripts read commands or code from user-provided files without validation, it could lead to:

-Command injection (similar to os[.]system()).

-Code execution (similar to exec()).

The design flaw could be that Nsight Systems assumes [.]nsys-rep or related files are safe, but if an attacker crafts a malicious file and you run the processing script, it could execute harmful commands.

Vulnerability details: CVE-2025-33228 NVIDIA Nsight Systems contains a vulnerability in the gfx_hotspot recipe, where an attacker could cause an OS command injection by supplying a malicious string to the process_nsys_rep_cli[.]py script if the script is invoked manually. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, and information disclosure.

Official announcement: Please refer to the link for details –

https://nvidia.custhelp.com/app/answers/detail/a_id/5755

Science

My imagination – what will 3I/ATLAS do on January 22, 2026?

Leave a comment

Preface: Many people develop a strong interest in science and space when they gaze at the stars at nightfall. The boundless potential of human thought and imagination holds limitless possibilities, and young people are eager to explore this realm. In fact, everyone possesses.

Background: Interstellar comet 3I/ATLAS aligns with the Sun-Earth axis on January 22, 2026, offering scientists what researchers describe as a once-in-decades opportunity to study pristine material from another star system.

At solar opposition, the anti-tail jet will be pointing at Earth, said Professor Avi Loeb.

Ref – https://avi-loeb.medium.com/tomorrows-full-moon-phase-of-3i-atlas-1107d089b6d5

Solar Radiation Storm Forecast for Jan 20-Jan 22 2026 Jan 20 Jan 21 Jan 22 S1 or greater 99% 95% 65% Rationale: An S2 (Moderate) solar radiation storm is in progress at the time of this summary. S1 (Minor) radiation levels are expected on 21-22 Jan.

My imagination: If 3I/ATLAS’s “anti-tail” point to earth. Coincidentally 22nd JAN 2026 earth magnet field defense strong solar wind from Sun. Assume the magnetic have chance intercept with 3I/ATLAS anti-tail. Because 3I/ATLAS’s “anti-tail” (a sunward extension of its coma) and unusual chemical composition are linked to the sublimation of volatile compounds, especially carbon dioxide (CO2cap C cap O sub 2𝐶𝑂2), methanol, hydrogen cyanide (HCN), and potentially organometallic molecules like nickel carbonyl, which vaporize to create jets and unusual dust pattern. It is strong. In this scenario. Does it have change in earth atmosphere?

If the anti-tail of 3I/ATLAS points towards Earth, and Earth’s magnetic field happens to resist the strong solar wind from the Sun on January 22, 2026, let’s assume the magnetic field encounters the anti-tail of 3I/ATLAS. Since the anti-tail of 3I/ATLAS (the portion of its coma extending towards the Sun) and its anomalous chemical composition are associated with the sublimation of volatile compounds, particularly carbon dioxide (CO₂), methanol, hydrogen cyanide (HCN), and potential organometallic molecules (such as nickel carbonyl), these substances would vaporize to form jets and unusual dust distribution. In this scenario, would Earth’s atmosphere change?

A magnetic field promotes the adsorption of CO2 and H2 onto the surface of magnetized catalysts. This facilitates the reaction between CO2 and hydrogen to produce methanol. If methanol located in space and approach of the outer layer of atmosphere?  What is the impact?

If methanol located in space were to approach Earth’s outer atmosphere, its impact would be defined by rapid chemical breakdown and atmospheric heating rather than direct environmental contamination. Does it mean the earth temperature increased?

Yes, if methanol from space were to enter the atmosphere, it would contribute to a rise in Earth’s temperature, though primarily through indirect chemical pathways rather than the heat generated during its entry.

Despite these warming effects, Earth has natural “sinks” that limit methanol’s impact:

  • Short Lifetime: Methanol only stays in the atmosphere for about 5 to 12 days.
  • Oceanic Absorption: The ocean acts as a major “sink,” quickly absorbing and depositing methanol that reaches lower altitudes, which helps mitigate its long-term warming effect. 

Therefore, we can safely observe this astronomical phenomenon.

AI and ML, Potential Risk of CVE

CVE-2025-33233 – About NVIDIA Merlin Transformers4Rec for all platform  22nd Jan 2026

Leave a comment

Official Updated 01/20/2026

Preface: Data engineers perform seamless preprocessing, a foundational stage where they gather messy, raw data from diverse sources, clean it (handling missing values, outliers, inconsistencies), integrate disparate datasets, and transform it into a unified, structured format, making it ready and reliable for data scientists to perform advanced feature engineering (creating new, meaningful features) and ultimately build better machine learning models. This ensures a high-quality, consistent input, preventing “garbage in, garbage out” for the modeling phase.

Background: Transformers4Rec is pre-installed in the merlin-pytorch container available from the NVIDIA GPU Cloud (NGC) catalog. This container is part of the NVIDIA Merlin ecosystem and is specifically designed to support sequential and session-based recommendation tasks using PyTorch.

The workflow can show you where we speculated design weakness of CVE-2025-33233.

NVTabular for preprocessingPyTorch for trainingTriton for serving—means PyTorch is a critical component. If its loading function is insecure, Merlin’s container is exposed regardless of NVIDIA’s own code. The workflow can display the location of suspected design flaw CVE-2025-33233.

If Transformers4Rec internally uses torch.load (which is common for loading PyTorch models) and relies on weights_only=True for safety, then CVE-2025-32434 could be the root cause or at least a contributing factor.

NVIDIA might have classified it as a separate CVE because the exploit path involves their product’s integration with PyTorch, making it a product-level exposure rather than just a dependency issue.

Vulnerability details: CVE-2025-33233 NVIDIA Merlin Transformers4Rec for all platforms contains a vulnerability where an attacker could cause a code injection issue. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering.

Official announcement: Please refer to the following link for details-

https://nvidia.custhelp.com/app/answers/detail/a_id/5761

Science

3I/ATLAS vs Energy vs Philosophy (21-01-2026)

Leave a comment

Preface: Elon Musk has warned that the rapid advancement of artificial intelligence and electric vehicles (EVs) is creating an “enormous demand” for electrical equipment and power generation, predicting a potential, severe electricity shortage as early as 2025.

About 3I/ATLAS: The interstellar comet 3I/ATLAS’s core is confirmed to be rotating, with observations revealing wobbling jets and a distinctive, changing “cupcake” brightness pattern, indicating a rotation period around 16 hours, but scientists are still investigating the exact cause of these unique, rapid rotational dynamics. These observations suggest complex outgassing or structural properties unlike typical solar system comets, sparking significant scientific interest and online discussion.

If the materials in the 3I/ATLAS core can generate high temperatures when passively receiving solar radiation, then it might be the next generation of energy. If this dream comes true, it’s just another coincidence! Because aliens didn’t appear , but rather guided you onto the right path in the future.

For example: The Moon’s surface, particularly its top layer of soil (regolith), contains significantly more Helium-3 (He-3) than Earth, deposited by solar winds over billions of years, making it a valuable potential resource for future clean energy (fusion) and high-tech applications like quantum computing, despite current extraction challenges.

Philosophy: Both creator and destroyer!

Humanity has created an artificial intelligence world, and Homo sapiens on Earth tell us we are entering a new era. This is truly exciting news… But if the creator of artificial intelligence represents God, did he missed a balance this new technology?