Yanir Tsarimi's banner
Yanir Tsarimi's profile picture

Yanir Tsarimi

@Yanir_3,375 subscribers

Hacker. I write about security & looking for the unknown unknowns. Cofounder @EnclaveAI

Shorts

I've discovered CVE-2026-32173 by steering a single agent The vuln: you could listen to anyone's AI chat stream on Azure SRE agent. Including LLM thinking, commands, tools. The auth check was there, but at the wrong place. Patched. Critical, Information Disclosure. $20k bounty

I've discovered CVE-2026-32173 by steering a single agent The vuln: you could listen to anyone's AI chat stream on Azure SRE agent. Including LLM thinking, commands, tools. The auth check was there, but at the wrong place. Patched. Critical, Information Disclosure. $20k bounty

47,854 Aufrufe