1. Healthcare AI Endpoint Exposes Patient Data Access Capabilities via System Prompt Leakage Vulnerability
Security researchers have identified a critical system prompt leakage vulnerability in an AI endpoint hosted at http://34.16.47.248:8882, exposing detailed capabilities for accessing sensitive patient information. The flaw, classified under LLM07:2025 and achieved through a role-flip attack technique, achieved a CVSS s...