https://vulnerability.circl.lu/sightings/feed 2026-06-17T10:56:47.992827+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/03e52363-c399-474e-b58b-c428946887e8/export 2026-06-17T10:56:48.008394+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "03e52363-c399-474e-b58b-c428946887e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48710", "type": "seen", "source": "https://gist.github.com/friendsalot66-cpu/fa616e63452f3b7503c7099efbae1f50", "content": "\n\n\n\n\n\nAI \u65b0\u805e\u91cd\u9ede \u2014 2026 \u5e74 06 \u6708 03\n\n body {font-family: -apple-system, BlinkMacSystemFont, \"Segoe UI\", Roboto, sans-serif; line-height: 1.6; color: #333; margin: 0; background-color: #f4f7f6; overflow: hidden; height: 100dvh;}\n .snap-container {height: 100dvh; overflow-y: scroll; scroll-snap-type: y mandatory; scroll-behavior: smooth;}\n .snap-section {height: 100dvh; scroll-snap-align: start; scroll-snap-stop: always; display: flex; flex-direction: column; justify-content: center; align-items: center; padding: 0 15px; box-sizing: border-box;}\n .content-card {max-width: 800px; background: #fff; padding: 30px; border-radius: 12px; box-shadow: 0 4px 15px rgba(0,0,0,0.1); width: 100%; box-sizing: border-box;}\n h1 {color: #2c3e50; border-bottom: 3px solid #3498db; padding-bottom: 12px; margin-top: 0; font-size: 1.5em;}\n h2.category {color: #e67e22; margin-top: 0; border-bottom: 1px solid #eee; padding-bottom: 8px; font-size: 1.2em;}\n h3.headline {color: #2980b9; margin-bottom: 8px; font-size: 1.15em;}\n ul {margin-top: 8px; padding-left: 22px;}\n li {margin-bottom: 10px; color: #444;}\n .footer {margin-top: 45px; font-size: 0.9em; color: #95a5a6; border-top: 1px solid #eee; padding-top: 20px; text-align: center;}\n .subtitle {color: #7f8c8d; font-size: 1.0em; font-style: italic; margin-bottom: 20px;}\n .summary-box {background: #e8f4f8; padding: 15px 20px; border-radius: 8px; margin-bottom: 20px; border-left: 4px solid #3498db;}\n .summary-box h2 {margin-top: 0; font-size: 1.1em; color: #2c3e50; margin-bottom: 10px;}\n .summary-table {width: 100%; border-collapse: collapse; margin-top: 10px; background: #fff;}\n .summary-table th, .summary-table td {border: 1px solid #bdd4e7; padding: 8px; text-align: left; font-size: 0.9em;}\n .summary-table th {background-color: #d1e8f2; color: #2c3e50; font-weight: 600;}\n .highlight-box {background-color: #f0f7fb; border-left: 5px solid #2980b9; padding: 15px 20px; margin: 15px 0; border-radius: 0 8px 8px 0;}\n\n\n\n \n\n \n\n \n\n \n\ud83d\udcf0 AI \u65b0\u805e\u91cd\u9ede \u2014 2026 \u5e74 06 \u6708 03\n \n**\u4eca\u65e5 15 \u5247\u4f60\u6700\u9700\u8981\u77e5\u5605 AI \u65b0\u805e**\n \n\n \n\ud83d\udccb \u4eca\u65e5\u65b0\u805e\u901f\u89bd\n \n\n StoryCompanyWhy It Matters\n \n \n \n Microsoft \u65d7\u8266\u63a8\u7406\u6a21\u578b\u62cd\u5f97\u4f4f Claude Sonnet 4.6\n Microsoft AI\n Microsoft \u7d42\u65bc\u6709\u81ea\u5bb6\u65d7\u8266\u63a8\u7406\u6a21\u578b\u62cd\u4f4f Claude Sonnet 4.6\uff0c\u5c0d Anthropic \u4f01\u696d\u6536\u5165\u69cb\u6210\u76f4\u63a5\u5a01\u8105\n \n \n \n Windows \u7d42\u65bc\u6709\u81ea\u5bb6 On-Device \u5c0f\u578b\u6a21\u578b\n Microsoft\n Microsoft \u586b\u88dc\u5497 on-device AI \u5605\u91cd\u8981\u7f3a\u53e3\uff0c14B \u6a21\u578b\u5920\u52c1\u53c8\u5514\u4f7f cloud\n \n \n \n Microsoft \u76ee\u6a19 2029 \u5e74\u9020\u51fa\u53ef\u64f4\u5c55\u91cf\u5b50\u96fb\u8166\n Microsoft\n \u91cf\u5b50\u96fb\u8166\u76ee\u6a19\u52a0\u901f\u5230 2029\uff0ctopological qubits \u8def\u7dda\u9818\u5148\u5c0d\u624b\n \n \n \n Microsoft\u3001AMD\u3001Broadcom\u3001Intel\u3001OpenAI\u3001NVIDIA \u806f\u624b\u9020\u958b\u653e\u6a19\u6e96\n Microsoft + AMD + Broadcom + Intel + OpenAI + NVIDIA\n \u8de8\u516c\u53f8\u958b\u653e\u5354\u8b70\u89e3\u6c7a\u5497\u5927\u898f\u6a21 AI training \u5605\u7db2\u7d61\u6545\u969c\u75db\u9ede\n \n \n \n \u908a\u500b AI \u6700\u53fb\u6349 Bug\uff1f\n Claude / GPT / Gemini / Grok\n \u6700\u65b0 community benchmark \u986f\u793a Opus 4.8 \u6349 bug \u6700\u5f37\uff0cSonnet 4.6 \u6027\u50f9\u6bd4\u6700\u9ad8\n \n \n \n 1 Petaflop AI \u7b97\u529b\uff0cNadella \u8a71\u81ea\u5df1\u90fd\u6392\u5514\u5230\u968a\n Microsoft + NVIDIA\n 1 petaflop \u5605 AI \u958b\u767c\u5de5\u4f5c\u7ad9\uff0cdeveloper \u672c\u5730\u6e2c\u8a66 agent workload \u5514\u4f7f call cloud\n \n \n \n Frontier AI Model \u5c08\u70ba\u91ab\u7642\u800c\u8a2d\n Microsoft + Mayo Clinic\n \u5168\u7403\u9802\u5c16\u91ab\u7642\u6a5f\u69cb Mayo Clinic \u540c Microsoft \u5408\u4f5c\u958b\u767c\u5c08\u7528\u91ab\u7642 AI \u6a21\u578b\n \n \n \n Agent \u5c08\u7528\u4e92\u806f\u7db2\u667a\u80fd\u540c\u6578\u64da\u5eab\n Microsoft Azure\n Microsoft \u70ba agent \u751f\u614b\u6e96\u5099\u597d infrastructure layer \u2014 \u5be6\u6642\u7db2\u7d61\u6578\u64da\u540c agent-native \u6578\u64da\u5eab\n \n \n \n Microsoft \u81ea\u5bb6\u6676\u7247\u5df2\u6295\u7522\n Microsoft\n Microsoft \u81ea\u5bb6 AI \u6676\u7247\u5df2\u6295\u7522\uff0cMaia 200 \u4fc2\u6a5f\u968a\u6548\u7387\u6700\u9ad8\u5605 inference \u6676\u7247\n \n \n \n \u8de8\u6240\u6709 App \u5605 AI Agent\n Microsoft\n Microsoft \u5605\u8de8\u61c9\u7528 AI agent \u6b63\u5f0f\u63a8\u51fa\uff0c\u5514\u4f7f switch app \u5c31\u53ef\u4ee5\u5f97\u5230 context-aware \u5354\u52a9\n \n \n \n Coding Models \u4fc2 AI \u9700\u6c42\u6700\u5927\u63a8\u52d5\u529b\n OpenAI / Stargate\n Altman \u660e\u78ba\u6307\u51fa coding models \u4fc2 AI \u9700\u6c42\u6700\u52c1\u5605 driver\uff0cStargate \u9020\u50f9\u9054 $46-56B\n \n \n \n AI \u9810\u6e2c\u7570\u898b\u4eba\u58eb\uff0c\u672a\u884c\u52d5\u5148\u6a19\u8a18\n Geedge Networks\n AI \u7528\u65bc\u653f\u6cbb\u58d3\u8feb\u5605\u771f\u5be6\u6848\u4f8b \u2014 \u9810\u6e2c\u7570\u8b70\u4eba\u58eb\u672a\u884c\u52d5\u5148\u6a19\u8a18\n \n \n \n \u591a\u6b65\u9a5f Hijacking \u6210\u4e3b\u6d41\n N/A\n Prompt injection \u9032\u5316\u6210\u591a\u6b65\u9a5f hijacking\uff0c\u55ae\u6b21\u6aa2\u6e2c\u5df2\u4e0d\u8db3\u4ee5\u9632\u79a6\n \n \n \n AI \u8a2d\u8a08\u5be6\u9a57\u3001\u5beb\u8ad6\u6587\u3001\u63d0\u4ea4 lab job\n Microsoft\n Microsoft \u5605\u79d1\u7814 AI platform GA\uff0c\u540c Google DeepMind \u7af6\u722d\u79d1\u5b78 AI \u5e02\u5834\n \n \n \n \ud83d\udcca SpaceX + Anthropic + OpenAI IPOs \u53ef\u80fd\u70ba\u7f8e\u570b\u80a1\u5e02\u589e\u52a0 $4 \u842c\u5104\n SpaceX / Anthropic / OpenAI\n \u4e09\u5bb6 AI \u516c\u53f8 IPO \u7e3d\u503c\u53ef\u80fd\u9054 $4 \u842c\u5104\uff0c\u4fc2 dot-com \u4ee5\u4f86\u6700\u5927\u5605 sector \u5e02\u503c\u64f4\u5f35\n \n \n \n \n \n \n \n \n\n \n\n \n\ud83e\udde0 \u57fa\u790e\u6a21\u578b\n \nMicrosoft \u65d7\u8266\u63a8\u7406\u6a21\u578b\u62cd\u5f97\u4f4f Claude Sonnet 4.6\n \n\nMustafa Suleyman \u55ba Build Day 2 \u63a8\u51fa MAI-Thinking-1\uff0cMicrosoft AI \u5605\u65d7\u8266\u63a8\u7406\u6a21\u578b\u3002\u5b98\u65b9\u8a71\u4f62\u300c\u55ba\u95dc\u9375\u5605\u8edf\u4ef6\u5de5\u7a0b benchmark \u8ffd\u4e0a\u9818\u5148\u6a21\u578b\uff0c\u4ef2\u55ba blind side-by-side \u6e2c\u8a66\u5165\u9762\u540c Sonnet 4.6 \u9054\u5230 human preference parity\u300d\u2014 \u5373\u4fc2\u540c Sonnet 4.6 \u5e73\u8d77\u5e73\u5750\u3002\n\u5462\u500b\u6a21\u578b\u5c08\u70ba\u591a\u6b65\u9a5f\u63a8\u7406\u3001\u8edf\u4ef6\u5de5\u7a0b\u3001\u7814\u7a76\u7d9c\u5408\u540c\u8907\u96dc\u6307\u4ee4\u8ddf\u9032\u800c\u8a2d\uff0c\u6703\u7528\u55ba Microsoft 365 Copilot \u5605 Agent Mode \u5165\u9762\u3002\n\u5982\u679c MAI-Thinking-1 \u771f\u4fc2\u6709 Sonnet 4.6 \u6c34\u5e73\uff0c\u4ef2\u8981\u7d93 Azure AI Foundry \u4ffe enterprise discount\uff0c\u5c0d Anthropic \u5605 Sonnet \u6536\u5165\u4fc2\u91cd\u5927\u5a01\u8105\u3002\n \n \n\n \n\n \n\n \n\ud83e\udde0 \u57fa\u790e\u6a21\u578b\n \nWindows \u7d42\u65bc\u6709\u81ea\u5bb6 On-Device \u5c0f\u578b\u6a21\u578b\n \n\nMicrosoft \u55ba Build 2026 \u63a8\u51fa\u5169\u500b\u65b0\u5605 on-device SLM\u3002Aion 1.0 Instruct \u4fc2\u65b0\u4e00\u4ee3\u5c0f\u6a21\u578b\uff0c\u4efb\u4f55 Windows \u6a5f\u90fd\u884c\u5f97\u3002Aion 1.0 Plan \u4fc2 14B \u53c3\u6578\u5605\u63a8\u7406\u540c tool-calling \u6a21\u578b\uff0c\u5c08\u70ba\u672c\u5730 agentic workflow \u800c\u8a2d\u3002\n14B \u5462\u500b\u898f\u683c\u597d\u6709\u610f\u601d\uff1a\u5927\u904e Phi Silica\uff0c\u7d30\u904e Claude Sonnet 4.6 \u6216 GPT-5.5\u3002\u4f62\u4f54\u5497\u500b\u300clocal frontier\u300d\u5605\u4f4d\u2014\u2014\u5920\u52c1\u505a\u8907\u96dc agent \u4efb\u52d9\u898f\u5283\uff0c\u53c8\u5920\u7d30\u884c\u5230\u73fe\u4ee3 laptop GPU \u5514\u4f7f call cloud\u3002\nAion 1.0 Plan \u4fc2 Windows Agent Framework \u5605\u672c\u5730\u63a8\u7406\u5c64\uff0c\u593e\u57cb WAF + DirectML 2.0 \u5c31\u4fc2 Microsoft \u5605\u5b8c\u6574 on-device AI stack\u3002\n \n \n\n \n\n \n\n \n\ud83c\udfe6 \u91d1\u878d\u6a5f\u69cb\n \nMicrosoft \u76ee\u6a19 2029 \u5e74\u9020\u51fa\u53ef\u64f4\u5c55\u91cf\u5b50\u96fb\u8166\n \n\nNadella \u55ba Build keynote \u58d3\u8ef8\u5ba3\u5e03 Majorana 2 \u7b2c\u4e8c\u4ee3\u91cf\u5b50\u8655\u7406\u5668\u3002Majorana 1 \u8b49\u660e\u4e86\u57fa\u790e\u7269\u7406\u53ef\u884c\uff0cMajorana 2 \u958b\u59cb\u505a\u5de5\u7a0b\u898f\u6a21\u5316\u3002Microsoft \u76ee\u6a19 2029 \u5e74\u524d\u4ea4\u4ed8\u53ef\u64f4\u5c55\u91cf\u5b50\u96fb\u8166\u3002\nMajorana \u7528 topological qubits\uff0c\u7406\u8ad6\u4e0a\u6bd4 IBM/Google \u5605 superconducting qubits \u66f4\u7a69\u5b9a\u66f4\u5c11 error\uff0c\u4f46\u5de5\u7a0b\u96e3\u5ea6\u9ad8\u597d\u591a\u3002Nadella \u63d0\u5230\u5605 1-microsecond operation time \u4fc2\u95dc\u9375\u2014\u2014\u5fae\u79d2\u7d1a\u5605\u91cf\u5b50\u9598\u64cd\u4f5c\u53ef\u4ee5\u55ba decoherence \u4e4b\u524d\u8dd1\u66f4\u8907\u96dc\u5605\u96fb\u8def\u3002\n\u5982\u679c 2029 \u5e74\u9054\u6a19\uff0cMicrosoft \u5605\u91cf\u5b50\u6642\u9593\u8868\u5c31\u5feb\u904e IBM\uff08\u76ee\u6a19 2033\uff09\u540c Google\uff08\u76ee\u6a19 2030 \u5e74\u4ee3\u521d\uff09\uff0c\u5c0d AI training \u540c optimization \u6709\u8b8a\u9769\u6027\u5f71\u97ff\u3002\n \n \n\n \n\n \n\n \n\ud83e\udde0 \u57fa\u790e\u6a21\u578b\n \nMicrosoft\u3001AMD\u3001Broadcom\u3001Intel\u3001OpenAI\u3001NVIDIA \u806f\u624b\u9020\u958b\u653e\u6a19\u6e96\n \n\nMicrosoft \u55ba Build 2026 \u5ba3\u5e03 Multipath Reliable Connection (MRC) \u5354\u8b70\uff0c\u540c AMD\u3001Broadcom\u3001Intel\u3001OpenAI\u3001NVIDIA \u4e00\u9f4a\u958b\u767c\u5605\u958b\u653e\u7db2\u7d61\u5354\u8b70\u3002MRC \u5c07 intelligence \u653e\u55ba network endpoints\uff0c\u7b49 AI workload \u53ef\u4ee5\u52d5\u614b\u7e5e\u904e\u7db2\u7d61\u6545\u969c\u3002\n\u5462\u500b\u554f\u984c\u597d\u73fe\u5be6\uff1a\u842c\u5f35 GPU \u5605 training job \u8dd1\u5497\u5e7e\u65e5\uff0c\u4e00\u500b\u7db2\u7d61\u6545\u969c\u5c31\u8981 restart\u3002MRC \u5605 endpoint intelligence \u53ef\u4ee5\u52d5\u614b\u7e5e\u9053\u7e7c\u7e8c\u884c\u3002\u8de8\u516c\u53f8\u5408\u4f5c\u610f\u5473 MRC \u4fc2 industry standard \u5b9a\u4f4d\u3002\n\u9810\u671f\u53ef\u4ee5\u6e1b\u5c11\u5927\u578b job \u56e0\u7db2\u7d61\u6545\u969c\u800c\u6d6a\u8cbb\u5605 compute \u7d04 15\u201325%\uff0c\u5c0d Azure \u5ba2\u6236\u4fc2\u597d\u5927\u5605\u6548\u7387\u63d0\u5347\u3002\n \n \n\n \n\n \n\n \n\ud83e\udde0 \u57fa\u790e\u6a21\u578b\n \n\u908a\u500b AI \u6700\u53fb\u6349 Bug\uff1f\n \n\nReddit r/ClaudeAI \u6709\u500b\u71b1\u9580 benchmark\uff1aGrok\u3001Claude Opus 4.8\u3001Claude Sonnet 4.6\u3001GPT-5.5\u3001Gemini 3.5 Flash \u5404\u81ea review \u540c\u4e00\u500b bug-seeded React app\uff0csenior dev panel blind \u8a55\u5206\u3002\n\u7d50\u679c\uff1aClaude Opus 4.8 \u6349 bug \u6700\u6e96\u5c24\u5176 security bug\u3002Sonnet 4.6 \u6392\u7b2c\u4e8c\u4f46 output \u5feb\u597d\u591a\uff0c\u6027\u50f9\u6bd4\u6700\u9ad8\u3002GPT-5.5 \u7b2c\u4e09\u3002Gemini 3.5 Flash \u7b2c\u56db\u4f46\u6700\u5feb\u3002Grok \u7b2c\u4e94\u4f46\u64c5\u9577 performance bottleneck\u3002\n\u540c formal benchmark \u500b pattern \u4e00\u81f4\uff1aOpus 4.8 \u9818\u5148 code quality\uff0cSonnet 4.6 \u6027\u50f9\u6bd4\u6700\u597d\uff0cGemini \u8d0f speed\u3002\n \n \n\n \n\n \n\n \n\u2601\ufe0f \u57fa\u5efa\n \n1 Petaflop AI \u7b97\u529b\uff0cNadella \u8a71\u81ea\u5df1\u90fd\u6392\u5514\u5230\u968a\n \n\nMicrosoft \u767c\u5e03 Surface RTX Spark Dev Box \u2014 \u57fa\u65bc NVIDIA RTX \u5605\u958b\u767c\u5de5\u4f5c\u7ad9\uff0c1 petaflop AI compute \u52a0 20 \u500b CPU core\u3002Nadella \u958b\u73a9\u7b11\u8a71\u81ea\u5df1\u90fd\u6392\u5514\u5230 waitlist\u3002\n1 petaflop \u6bd4\u73fe\u6642\u9ad8\u968e RTX \u5de5\u4f5c\u7ad9\u5f37\u597d\u591a\uff0c\u8db3\u5920\u672c\u5730\u8dd1 full-scale agent workload \u505a\u958b\u767c\u6e2c\u8a66\u3002\u5b9a\u4f4d\u4fc2\u4ffe developer \u672c\u5730\u6e2c\u8a66 production-level \u63a8\u7406\u901f\u5ea6\u518d deploy \u4e0a Azure\u3002\n \n \n\n \n\n \n\n \n\u2601\ufe0f \u57fa\u5efa\n \nFrontier AI Model \u5c08\u70ba\u91ab\u7642\u800c\u8a2d\n \n\nMayo Clinic CEO \u55ba Build 2026 \u5ba3\u5e03\u540c Microsoft \u5408\u4f5c\u958b\u767c\u300cfrontier model specifically for health\u300d\u2014 \u7528 Mayo Clinic \u5605\u81e8\u5e8a\u5c08\u696d\u540c\u91ab\u5b78\u77e5\u8b58\u8a13\u7df4\u5605\u5b9a\u5236 AI \u6a21\u578b\u3002\u76ee\u6a19\u4fc2\u5c07 Mayo Clinic \u5605\u670d\u52d9\u64f4\u5c55\u5230\u5168\u7403\u3002\n\u66ab\u6642\u672a\u6709\u5177\u9ad4\u6280\u8853\u7d30\u7bc0\u516c\u958b\uff0c\u4f46 Mayo Clinic \u4fc2\u5168\u7403\u6700\u9802\u5c16\u91ab\u7642\u6a5f\u69cb\uff0c\u5462\u500b partnership \u4fe1\u865f\u597d\u5f37\u3002\n \n \n\n \n\n \n\n \n\u2601\ufe0f \u57fa\u5efa\n \nAgent \u5c08\u7528\u4e92\u806f\u7db2\u667a\u80fd\u540c\u6578\u64da\u5eab\n \n\nBuild 2026 \u6709\u5169\u500b infrastructure \u516c\u5e03\uff1aWeb IQ \u4ffe agent \u5b58\u53d6\u7d50\u69cb\u5316\u5be6\u6642\u516c\u958b\u7db2\u7d61\u8cc7\u8a0a\uff08\u80a1\u50f9\u3001\u6cd5\u898f\u66f4\u65b0\uff09\uff0c\u4fc2 verified structured data \u5514\u4fc2 raw HTML\u3002\nAzure HorizonDB \u4fc2\u5c08\u70ba agent \u800c\u5efa\u5605 Postgres \u64f4\u5c55\uff0c\u652f\u63f4 agent \u4e4b\u9593\u5171\u4eab\u72c0\u614b\u540c\u8de8 agent \u8a18\u61b6\u3002\n \n \n\n \n\n \n\n \n\u2601\ufe0f \u57fa\u5efa\n \nMicrosoft \u81ea\u5bb6\u6676\u7247\u5df2\u6295\u7522\n \n\nNadella \u78ba\u8a8d Maia 200 \u5df2\u55ba Iowa \u540c Arizona \u6295\u7522\uff0c\u4e0b\u4e00\u7ad9 Italy\u3001Australia\u3001South Korea\u3002Maia 200 \u4fc2 Microsoft \u6a5f\u968a\u5165\u9762 tokens per dollar per watt \u6700\u9ad8\u5605\u6676\u7247\u3002\nCobalt 200 ARM \u8655\u7406\u5668\u5605\u65b0 VM \u800c\u5bb6 preview\uff0c\u5df2\u90e8\u7f72\u55ba\u8d85\u904e 10 \u500b\u5168\u7403 region\u3002\n \n \n\n \n\n \n\n \n\ud83e\udd16 \u6846\u67b6\n \n\u8de8\u6240\u6709 App \u5605 AI Agent\n \n\nMicrosoft \u767c\u5e03 Scout\uff0c\u4e00\u500b\u4eca\u65e5\u5c31\u4ffe developer \u7528\u5605 AI agent\u3002\u4f62\u76e3\u63a7\u4f60\u6210\u500b desktop \u5605 context\uff0c\u7136\u5f8c\u63d0\u4f9b\u8de8\u61c9\u7528\u7a0b\u5f0f\u5605 context-aware \u5354\u52a9\u3002\n\u540c Copilot \u55ba\u500b\u5225 app \u5605\u6700\u5927\u5206\u5225\uff1aScout \u7406\u89e3\u4f60\u6210\u500b work session \u5605 cross-application \u4e0a\u4e0b\u6587\u3002\n \n \n\n \n\n \n\n \n\ud83d\udcbb \u958b\u767c\u8005\u5de5\u5177\n \nCoding Models \u4fc2 AI \u9700\u6c42\u6700\u5927\u63a8\u52d5\u529b\n \n\nCNBC \u8a2a\u554f Sam Altman \u55ba Stargate Michigan data center\u3002Altman \u8a71 Coding models \u4fc2 AI \u9700\u6c42\u6700\u5927\u63a8\u52d5\u529b\uff0cStargate \u5462\u500b\u5927\u8ced\u6ce8\u5c31\u4fc2\u57fa\u65bc coding model \u5605 adoption\u3002\nOracle co-CEO \u8a71 Michigan data center \u7e3d\u9020\u50f9 $46\u2013$56B \u2014 \u4eba\u985e\u53f2\u4e0a\u6700\u5927\u5605\u55ae\u4e00 AI \u57fa\u5efa\u9805\u76ee\u3002OpenAI \u4ef2\u6703\u5411 Michigan \u8d85\u904e 40 \u842c\u540d\u5b78\u751f\u63d0\u4f9b $45M Codex credits\u3002\n \n \n\n \n\n \n\n \n\ud83d\udcbb \u958b\u767c\u8005\u5de5\u5177\n \nAI \u9810\u6e2c\u7570\u898b\u4eba\u58eb\uff0c\u672a\u884c\u52d5\u5148\u6a19\u8a18\n \n\nPolitical Wire \u5831\u5c0e Geedge Networks \u6b63\u5efa\u9020 AI \u7cfb\u7d71\uff0c\u7528\u884c\u70ba\u6578\u64da\u3001\u793e\u4ea4\u5a92\u9ad4\u6d3b\u52d5\u540c\u79fb\u52d5\u6578\u64da\u9810\u6e2c\u908a\u500b\u4eba\u53ef\u80fd\u6703\u6210\u70ba\u653f\u6cbb\u7570\u898b\u4eba\u58eb\uff0c\u55ba\u672a\u6709\u4efb\u4f55\u884c\u52d5\u4e4b\u524d\u5c31\u4ffe risk score\u3002\n\u5462\u500b\u4fc2 pre-crime \u5f0f predictive political profiling\uff0c\u540c Anthropic \u5605 Claude Mythos \u5f62\u6210\u5c16\u92b3\u5c0d\u6bd4\uff0c\u4fc2 AI \u96d9\u9762\u6027\u5605\u6700\u6e05\u695a\u4f8b\u8b49\u3002\n \n \n\n \n\n \n\n \n\ud83d\udcbb \u958b\u767c\u8005\u5de5\u5177\n \n\u591a\u6b65\u9a5f Hijacking \u6210\u4e3b\u6d41\n \n\n\u6700\u65b0\u4f01\u696d\u7d1a\u6aa2\u6e2c\u6578\u64da\u986f\u793a 2026 \u5e74\u653b\u64ca\u65b9\u5f0f\u540c 2023 \u5e74\u5b8c\u5168\u5514\u540c\u30022023 \u5e74\u5605 direct override \u57fa\u672c\u4e0a\u6240\u6709\u751f\u7522\u7cfb\u7d71\u90fd\u64cb\u5f97\u4f4f\u3002\n2026 \u5e74\u4e3b\u6d41\u4fc2 multi-step hijacking\uff1a\u4e00\u7cfb\u5217\u770b\u4f3c\u7121\u5bb3\u5605 instruction \u5206\u6563\u55ba\u591a\u500b input\uff0c\u6bcf\u500b\u55ae\u7368\u7747\u5187\u554f\u984c\uff0c\u7d44\u5408\u57cb\u5c31 redirect \u5497 agent \u884c\u70ba\u3002\n\u9632\u79a6\u9700\u8981 behavioral monitoring across full agent session\u3002\u4e0a\u661f\u671f Sysdig CVE-2026-48710 \u5605 database exfiltration \u5c31\u4fc2\u5be6\u4f8b\u3002\n \n \n\n \n\n \n\n \n\ud83d\udd2c \u7814\u7a76\u8207\u8da8\u52e2\n \nAI \u8a2d\u8a08\u5be6\u9a57\u3001\u5beb\u8ad6\u6587\u3001\u63d0\u4ea4 lab job\n \n\nMicrosoft Discovery \u79d1\u7814 AI \u5e73\u53f0\u6b63\u5f0f GA\u3002VP David Carmona \u793a\u7bc4\u7528\u4f62\u6539\u5584\u5851\u81a0\u56de\u6536\u5316\u5b78 \u2014 \u7814\u7a76\u54e1 input prompt\uff0cDiscovery \u63d0\u8b70\u5be6\u9a57\u65b9\u6cd5\u3001\u5beb\u8ad6\u6587\u7d50\u69cb\u3001\u63d0\u4ea4 AI-generated lab job\u3002\n\u5514\u4fc2\u4e00\u6b21\u6027\u554f\u7b54\u5f15\u64ce\uff0c\u6709\u5572 output \u8981\u5e7e\u500b\u9418\u751a\u81f3\u5e7e\u65e5\uff0c\u56e0\u70ba iterative \u904b\u4f5c\u597d\u4f3c\u771f\u5be6\u79d1\u5b78\u904e\u7a0b\u3002GA \u610f\u5473 enterprise \u5ba2\u6236\u6709 active Azure agreement \u5c31\u7528\u5f97\u3002\n \n \n\n \n\n \n\n \n\ud83d\udcca \u5e02\u5834\u8207\u8ca1\u7d93\n \n\ud83d\udcca SpaceX + Anthropic + OpenAI IPOs \u53ef\u80fd\u70ba\u7f8e\u570b\u80a1\u5e02\u589e\u52a0 $4 \u842c\u5104\n \n\nThe Economist \u5206\u6790\u6307 SpaceX\u3001Anthropic \u540c OpenAI \u4e09\u8005\u5982\u679c\u55ba 2026 \u5e74\u5b8c\u6210 IPO\uff0c\u53ef\u80fd\u70ba\u7f8e\u570b\u80a1\u5e02\u5e7e\u500b\u6708\u5167\u589e\u52a0 $4 \u842c\u5104\u5e02\u503c\u3002SpaceX \u4f30\u503c $1.75T\uff0cAnthropic \u7d04 $1\u20131.25T\uff0cOpenAI \u7d04 $852B\u2013$1T\u3002\n\u5462\u500b\u898f\u6a21\u5605 capital inflow \u9700\u8981 institutional investors \u8ce3\u51fa\u73fe\u6709\u6301\u5009\u53bb\u7c4c\u9322\uff0c\u53ef\u80fd\u5c0d broad market indices \u9020\u6210\u8ce3\u58d3\uff0c\u5c24\u5176\u4fc2 tech \u677f\u584a\u3002\n \n \n\n \n\n \n\n \n\ud83d\udcf0 \u4f86\u6e90\uff1aBuild Fast with AI | Delivered: 2026-06-03 10:24 HKT\n \n \n \n\n\n", "creation_timestamp": "2026-06-03T02:24:10.000000Z"} 2026-06-03T02:24:10+00:00 https://vulnerability.circl.lu/sighting/fa14a6f7-e862-4c8e-9a39-3e394c2cc275/export 2026-06-17T10:56:48.008172+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "fa14a6f7-e862-4c8e-9a39-3e394c2cc275", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48710", "type": "seen", "source": "https://gist.github.com/friendsalot66-cpu/d3992f0cb96eca4c4a660edee517701e", "content": "\n\n\n\n\nAI News Digest - 2026\u5e746\u67083\u65e5\n\n body { font-family: -apple-system, BlinkMacSystemFont, \"Segoe UI\", Roboto, sans-serif; line-height: 1.6; color: #333; margin: 0; background-color: #f4f7f6; overflow: hidden; height: 100dvh; }\n .snap-container { height: 100dvh; overflow-y: scroll; scroll-snap-type: y mandatory; scroll-behavior: smooth; }\n .snap-section { height: 100dvh; scroll-snap-align: start; scroll-snap-stop: always; display: flex; flex-direction: column; justify-content: center; align-items: center; padding: 0 15px; box-sizing: border-box; }\n .content-card { max-width: 800px; background: #fff; padding: 30px; border-radius: 12px; box-shadow: 0 4px 15px rgba(0,0,0,0.1); width: 100%; box-sizing: border-box; max-height: 90vh; overflow-y: auto; }\n h1 { color: #2c3e50; border-bottom: 3px solid #3498db; padding-bottom: 12px; margin-top: 0; font-size: 1.5em; }\n h2.category { color: #e67e22; margin-top: 0; border-bottom: 1px solid #eee; padding-bottom: 8px; font-size: 1.2em; }\n h3.headline { color: #2980b9; margin-bottom: 8px; font-size: 1.15em; }\n ul { margin-top: 8px; padding-left: 22px; }\n li { margin-bottom: 10px; color: #444; }\n .footer { margin-top: 45px; font-size: 0.9em; color: #95a5a6; border-top: 1px solid #eee; padding-top: 20px; text-align: center; }\n .subtitle { color: #7f8c8d; font-size: 1.0em; font-style: italic; margin-bottom: 20px; }\n .summary-box { background: #e8f4f8; padding: 15px 20px; border-radius: 8px; margin-bottom: 20px; border-left: 4px solid #3498db; }\n .summary-box h2 { margin-top: 0; font-size: 1.1em; color: #2c3e50; margin-bottom: 10px; }\n .summary-table { width: 100%; border-collapse: collapse; margin-top: 10px; background: #fff; }\n .summary-table th, .summary-table td { border: 1px solid #bdd4e7; padding: 8px; text-align: left; font-size: 0.9em; }\n .summary-table th { background-color: #d1e8f2; color: #2c3e50; font-weight: 600; }\n .highlight-box { background-color: #f0f7fb; border-left: 5px solid #2980b9; padding: 15px 20px; margin: 15px 0; border-radius: 0 8px 8px 0; }\n\n\n\n\n\n\n \n\n \n\n \n\ud83d\udcf0 AI \u65b0\u805e\u91cd\u9ede \u2014 2026\u5e746\u67083\u65e5\n \n\u4eca\u65e5 15 \u5247\u4f60\u6700\u9700\u8981\u77e5\u5605 AI \u65b0\u805e\uff082026/06/03 Build \u7b2c\u4e8c\u65e5\u5831\u5c0e\uff09\n \n\n \n\ud83d\udccb \u4eca\u65e5\u65b0\u805e\u901f\u89bd\n \n\n StoryCompanyWhy It Matters\n \n \ud83e\udde0 MAI-Thinking-1\uff1aMicrosoft \u65d7\u8266\u63a8\u7406\u6a21\u578b\u8ffd\u8cbc Claude...\ud83e\udde0 LLMMustafa Suleyman \u55ba Build Day 2 \u6b63\u5f0f\u767c\u5e03 MAI-Thinking-1\uff0cMicrosoft...\n \ud83e\udde0 Aion 1.0 Instruct \u540c Plan\uff1aWindows \u5605\u672c\u5730\u5c0f\u578b\u8a9e\u8a00...\ud83e\udde0 LLMMicrosoft \u55ba Build 2026 \u63a8\u51fa\u5169\u500b\u65b0 on-device SLM\uff1aAion 1.0 Instruct...\n \ud83c\udfe6 Majorana 2\uff1aMicrosoft \u76ee\u6a19 2029 \u5e74\u91cf\u7522\u53ef\u64f4\u5c55\u91cf\u5b50\u96fb\u8166\ud83c\udfe6 \u91d1\u878d\u6a5f\u69cbNadella \u55ba Build keynote \u5c3e\u8072\u5ba3\u5e03 Majorana 2\u2014\u2014\u7b2c\u4e8c\u4ee3\u91cf\u5b50\u8655\u7406\u5668\u3002Majorana 1...\n \ud83e\udde0 MRC \u7db2\u7d61\u5354\u8b70\uff1aMicrosoft\u3001AMD\u3001Broadcom\u3001Intel\u3001Op...\ud83e\udde0 LLMMicrosoft \u55ba Build 2026 \u5ba3\u5e03 MRC \u5354\u8b70\u2014\u2014\u540c AMD\u3001Broadcom\u3001Intel\u3001OpenA...\n \ud83e\udde0 \u4e94\u6a21\u578b Code Review \u57fa\u6e96\u6e2c\u8a66\uff1a\u908a\u500b AI \u7747 Bug-Seeded ...\ud83e\udde0 LLMReddit \u4e0a\u9031\u71b1\u9580 benchmark\uff1a\u7528 Grok\u3001Claude Opus 4.8\u3001Sonnet 4.6\u3001GPT-...\n \u2601\ufe0f Surface RTX Spark Dev Box\uff1a1 Petaflop AI ...\u2601\ufe0f \u4f01\u696d AIMicrosoft \u767c\u5e03 Surface RTX Spark Dev Box\u2014\u2014\u57fa\u65bc NVIDIA RTX \u5605\u958b\u767c\u5de5\u4f5c\u7ad9...\n \u2601\ufe0f Microsoft + Mayo Clinic\uff1a\u70ba\u5168\u7403\u91ab\u7642\u5065\u5eb7\u6253\u9020 Fronti...\u2601\ufe0f \u4f01\u696d AIMayo Clinic CEO \u89aa\u81ea\u4e0a\u53f0\u5ba3\u5e03\u540c Microsoft \u5408\u4f5c\u958b\u767c\u300c\u5c08\u70ba\u91ab\u7642\u5065\u5eb7\u5605 frontier mode...\n \u2601\ufe0f Web IQ \u540c Azure HorizonDB\uff1aAgent \u4e92\u806f\u7db2\u667a\u80fd\u540c\u5c08\u7528 ...\u2601\ufe0f \u4f01\u696d AIWeb IQ\uff1aMicrosoft \u65b0 AI \u7cfb\u7d71\uff0c\u7540 agent \u5b58\u53d6\u7d50\u69cb\u5316\u5be6\u6642\u516c\u958b\u7db2\u7d61\u8cc7\u8a0a\uff08\u80a1\u50f9\u3001\u76e3\u7ba1\u66f4\u65b0\u3001\u65b0\u805e\uff09\uff0c\u540c...\n \u2601\ufe0f Maia 200 \u540c Cobalt 200\uff1aMicrosoft \u81ea\u5bb6\u6676\u7247\u6295\u7522\u540c\u9810...\u2601\ufe0f \u4f01\u696d AINadella \u78ba\u8a8d Maia 200\uff08\u7b2c\u4e8c\u4ee3 AI \u52a0\u901f\u5668\uff09\u5df2\u7d93\u55ba Iowa \u540c Arizona \u6295\u7522\uff0c\u4e0b\u4e00\u6b65\u64f4\u5c55\u5230\u610f...\n \ud83e\udd16 Scout\uff1a\u8de8\u6240\u6709\u5df2\u958b\u61c9\u7528\u7a0b\u5f0f\u5605 AI Agent\ud83e\udd16 AI \u4ee3\u7406Microsoft \u767c\u5e03 Scout\u2014\u2014\u55ba\u4f60\u5de5\u4f5c\u5605\u5730\u65b9\u5de5\u4f5c\uff0c\u7121\u8ad6\u4fc2\u54a9 app\u300d\u5605\u8de8\u61c9\u7528 AI agent\u3002\u76e3\u63a7\u4f60 des...\n \ud83d\udcbb Sam Altman \u55ba Stargate Michigan\uff1aCoding Mo...\ud83d\udcbb \u958b\u767c\u8005\u5de5\u5177CNBC \u8a2a\u554f Sam Altman \u55ba Stargate Michigan\u3002Altman \u8a71\u300cCoding model...\n \ud83d\udcbb \u4e2d\u570b Geedge Networks\uff1a\u7528 AI \u9810\u6e2c\u653f\u6cbb\u7570\u898b\u4eba\u58eb\uff08\u672a\u884c\u52d5\u524d\uff09\ud83d\udcbb \u958b\u767c\u8005\u5de5\u5177\u4e2d\u570b AI \u516c\u53f8 Geedge Networks \u6b63\u5efa\u7acb AI \u7cfb\u7d71\uff0c\u7528\u884c\u70ba\u6578\u64da\u3001\u793e\u4ea4\u5a92\u9ad4\u6d3b\u52d5\u3001\u901a\u8a0a\u6a21\u5f0f\u9810\u6e2c\u908a\u500b\u6709\u53ef\u80fd\u6210...\n \ud83d\udcbb AI Prompt Injection 2026\uff1a\u76f4\u63a5\u8986\u84cb\u6210\u6b77\u53f2\uff0c\u591a\u6b65\u9a5f\u52ab\u6301\u6210\u4e3b...\ud83d\udcbb \u958b\u767c\u8005\u5de5\u5177\u751f\u7522\u6578\u64da\u986f\u793a 2026 \u5e74 prompt injection \u653b\u64ca\u540c 2023 \u5e74\u5b8c\u5168\u5514\u540c\u30022023 \u5e74\u4e3b\u6d41\u4fc2\u76f4\u63a5\u8986\u84cb\u6307...\n \ud83d\udd2c Microsoft Discovery GA\uff1aAI \u81ea\u52d5\u8a2d\u8a08\u5be6\u9a57\u3001\u5beb\u8ad6\u6587\u3001\u63d0\u4ea4 ...\ud83d\udd2c \u7814\u7a76\u8207\u8da8\u52e2Microsoft Discovery \u79d1\u7814 AI \u5e73\u53f0\u6b63\u5f0f GA\u3002VP \u793a\u7bc4\u7528 Discovery \u6539\u5584\u5851\u81a0\u56de\u6536\u5316\u5b78\u2014...\n \ud83d\udcca SpaceX + Anthropic + OpenAI IPO \u6216\u70ba\u7f8e\u570b\u80a1\u5e02\u589e\u52a0...\ud83d\udcca \u5e02\u5834\u8207\u8ca1\u7d93The Economist \u5206\u6790\uff1a\u5982\u679c SpaceX\u3001Anthropic\u3001OpenAI \u4e09\u9593\u516c\u53f8\u90fd\u55ba 2026 \u5e74\u5b8c\u6210 ...\n \n \n \n \n \n\n \n\n \n\n \n\ud83e\udde0 \ud83e\udde0 LLM / \u57fa\u790e\u6a21\u578b\n \nMAI-Thinking-1\uff1aMicrosoft \u65d7\u8266\u63a8\u7406\u6a21\u578b\u8ffd\u8cbc Claude Sonnet 4.6\n \n\n \nMustafa Suleyman \u55ba Build Day 2 \u6b63\u5f0f\u767c\u5e03 MAI-Thinking-1\uff0cMicrosoft AI \u5605\u65d7\u8266\u63a8\u7406\u6a21\u578b\u3002\u5b98\u65b9\u8072\u7a31\u300c\u55ba\u95dc\u9375\u8edf\u4ef6\u5de5\u7a0b\u57fa\u6e96\u8ffd\u8cbc\u9818\u5148\u6a21\u578b\uff0c\u76f2\u6e2c\u4e2d\u9054\u5230\u8207 Sonnet 4.6 \u5605\u4eba\u985e\u504f\u597d\u5e73\u624b\u300d\u2014\u2014\u5373\u4fc2\u540c Claude Sonnet 4.6 \u540c\u7d1a\uff0c\u800c\u5187\u8a71\u8d0f GPT-5.5 \u6216 Opus 4.8\u3002\n \n\u5c08\u70ba\u63a8\u7406\u5bc6\u96c6\u578b\u4efb\u52d9\u8a2d\u8a08\uff1a\u591a\u6b65\u9a5f\u554f\u984c\u5206\u89e3\u3001\u8edf\u4ef6\u5de5\u7a0b\u3001\u7814\u7a76\u7d9c\u5408\u3002\u540c Project Polaris\uff08GitHub Copilot \u5c08\u7528\uff09\u5514\u540c\uff0cMAI-Thinking-1 \u4fc2\u901a\u7528\u63a8\u7406\u6a21\u578b\uff0c\u6703\u7528\u55ba M365 Copilot Agent Mode\uff08Word\u3001Excel\u3001PowerPoint\uff09\u3002\n \n\u5982\u679c\u771f\u4fc2\u505a\u5230 Sonnet 4.6 \u7d1a\u6578\u4f46\u900f\u904e Azure \u4f01\u696d\u6298\u6263\u5e73\u904e Sonnet 4.6\uff08$3/$15 per million tokens\uff09\uff0c\u5c0d\u65bc Azure-heavy \u5605\u4f01\u696d\u569f\u8b1b\uff0c\u63a1\u8cfc\u8a08\u6578\u6703\u5b8c\u5168\u5514\u540c\u3002\n \n \n \n \n\n \n\n \n\ud83e\udde0 \ud83e\udde0 LLM / \u57fa\u790e\u6a21\u578b\n \nAion 1.0 Instruct \u540c Plan\uff1aWindows \u5605\u672c\u5730\u5c0f\u578b\u8a9e\u8a00\u6a21\u578b\n \n\n \nMicrosoft \u55ba Build 2026 \u63a8\u51fa\u5169\u500b\u65b0 on-device SLM\uff1aAion 1.0 Instruct\uff08\u9810\u89bd\uff09\u4fc2\u65b0\u4e00\u4ee3 SLM\uff0c\u5c08\u70ba\u672c\u5730\u6307\u4ee4\u8ddf\u9032\u800c\u8a2d\uff0c\u5514\u4f7f Copilot+ PC \u90fd\u7528\u5f97\uff1bAion 1.0 Plan \u4fc2 14B \u53c3\u6578\u63a8\u7406+\u5de5\u5177\u8abf\u7528\u6a21\u578b\uff0c\u5c08\u70ba Windows \u672c\u5730 agent \u5de5\u4f5c\u6d41\u800c\u8a2d\u3002\n \n14B \u53c3\u6578\u5462\u500b\u4f4d\u597d\u6709\u610f\u601d\uff1a\u5927\u904e Phi Silica \u4f46\u7d30\u904e Claude Sonnet 4.6 \u6216 GPT-5.5\uff0c\u5c6c\u65bc\u300c\u672c\u5730\u524d\u6cbf\u300d\u985e\u5225\u2014\u2014\u5920\u529b\u505a\u8907\u96dc agent \u4efb\u52d9\u898f\u5283\uff0c\u540c\u6642\u55ba\u73fe\u4ee3 laptop GPU \u4e0a\u8dd1\u5f97\u9806\u5514\u4f7f\u4f86\u56de cloud\u3002\n \nAion 1.0 Plan \u6574\u5408\u5497\u5165 Windows Agent Framework \u6210\u70ba\u672c\u5730 agent \u5605\u63a8\u7406\u5c64\u3002WAF + Aion 1.0 Plan + DirectML 2.0 \u5c31\u4fc2 Microsoft \u5b8c\u6574\u5605 on-device AI stack\u3002\n \n \n \n \n\n \n\n \n\ud83c\udfe6 \ud83c\udfe6 \u91d1\u878d\u6a5f\u69cb\n \nMajorana 2\uff1aMicrosoft \u76ee\u6a19 2029 \u5e74\u91cf\u7522\u53ef\u64f4\u5c55\u91cf\u5b50\u96fb\u8166\n \n\n \nNadella \u55ba Build keynote \u5c3e\u8072\u5ba3\u5e03 Majorana 2\u2014\u2014\u7b2c\u4e8c\u4ee3\u91cf\u5b50\u8655\u7406\u5668\u3002Majorana 1 \u4fc2\u300c\u8b49\u660e\u57fa\u790e\u7269\u7406\u53ef\u884c\u300d\uff0cMajorana 2 \u4fc2\u300c\u958b\u59cb\u5de5\u7a0b\u898f\u6a21\u5316\u300d\u3002\u516c\u53f8\u76ee\u6a19 2029 \u5e74\u524d\u63a8\u51fa\u53ef\u64f4\u5c55\u91cf\u5b50\u96fb\u8166\u3002\n \nMajorana \u7528\u62d3\u64b2\u91cf\u5b50\u4f4d\u5143\uff0c\u540c IBM/Google \u5605\u8d85\u5c0e\u91cf\u5b50\u4f4d\u5143\u5b8c\u5168\u5514\u540c\u3002\u7406\u8ad6\u4e0a\u66f4\u7a69\u5b9a\u66f4\u5c11\u932f\u8aa4\uff0c\u4f46\u5de5\u7a0b\u4e0a\u597d\u96e3\u641e\u30021 \u5fae\u79d2\u64cd\u4f5c\u6642\u9593\u4fc2\u95dc\u9375\u2014\u2014\u5fae\u79d2\u7d1a\u91cf\u5b50\u9598\u4ee4\u96fb\u8def\u53ef\u4ee5\u8907\u96dc\u597d\u591a\u5148\u88ab\u9000\u76f8\u5e72\u5f71\u97ff\u3002\n \n\u5462\u500b\u6642\u9593\u8868\uff082029\uff09\u76f4\u63a5\u58d3\u8feb IBM\uff08\u76ee\u6a19 2033\u300c\u5bb9\u932f\u300d\u91cf\u5b50\uff09\u540c Google\uff08\u76ee\u6a19 2030 \u5e74\u4ee3\u521d\uff09\u3002\u5982\u679c\u505a\u5230\uff0cMicrosoft \u6703\u540c\u6642\u55ba\u91cf\u5b50\u8a08\u7b97\u540c AI \u57fa\u5efa\u5169\u500b\u9818\u57df\u4f54\u64da\u7368\u7279\u4f4d\u7f6e\u3002\n \n \n \n \n\n \n\n \n\ud83e\udde0 \ud83e\udde0 LLM / \u57fa\u790e\u6a21\u578b\n \nMRC \u7db2\u7d61\u5354\u8b70\uff1aMicrosoft\u3001AMD\u3001Broadcom\u3001Intel\u3001OpenAI\u3001NVIDIA \u5171\u5efa\u958b\u653e\u6a19\u6e96\n \n\n \nMicrosoft \u55ba Build 2026 \u5ba3\u5e03 MRC \u5354\u8b70\u2014\u2014\u540c AMD\u3001Broadcom\u3001Intel\u3001OpenAI\u3001NVIDIA \u5171\u540c\u958b\u767c\u5605\u958b\u653e\u7db2\u7d61\u5354\u8b70\u3002\u5c07\u667a\u80fd\u653e\u5230\u7db2\u7d61\u7aef\u9ede\uff0c\u7b49 AI \u5de5\u4f5c\u8ca0\u8f09\u53ef\u4ee5\u52d5\u614b\u7e5e\u904e\u7db2\u7d61\u6545\u969c\u800c\u5514\u4f7f\u505c\u6a5f\u91cd\u555f\u3002\n \n\u554f\u984c\u597d\u73fe\u5be6\uff1a\u5927\u898f\u6a21 AI \u8a13\u7df4\u7528\u6210\u5343\u4e0a\u842c GPU\uff0c\u4efb\u4f55\u7db2\u7d61\u6545\u969c\u90fd\u53ef\u4ee5\u4ee4\u904b\u884c\u5497\u5e7e\u65e5\u5605 job \u505c\u9813\u6216\u91cd\u555f\u3002MRC \u5bb9\u8a31 job \u52d5\u614b\u7e5e\u8def\u7e7c\u7e8c\uff0c\u9810\u8a08\u6e1b\u5c11 15-25% \u7db2\u7d61\u6545\u969c\u8a08\u7b97\u6d6a\u8cbb\u3002\n \n\u591a\u9593\u7af6\u722d\u5c0d\u624b\u4e00\u9f4a\u958b\u767c\uff0c\u986f\u793a MRC \u4fc2\u5b9a\u4f4d\u505a\u696d\u754c\u6a19\u6e96\u800c\u5514\u4fc2 Microsoft \u7368\u6709\u6280\u8853\u3002\n \n \n \n \n\n \n\n \n\ud83e\udde0 \ud83e\udde0 LLM / \u57fa\u790e\u6a21\u578b\n \n\u4e94\u6a21\u578b Code Review \u57fa\u6e96\u6e2c\u8a66\uff1a\u908a\u500b AI \u7747 Bug-Seeded React Code \u6700\u53fb\uff1f\n \n\n \nReddit \u4e0a\u9031\u71b1\u9580 benchmark\uff1a\u7528 Grok\u3001Claude Opus 4.8\u3001Sonnet 4.6\u3001GPT-5.5\u3001Gemini 3.5 Flash \u5206\u5225 review \u540c\u4e00\u6bb5 bug-seeded React code\uff0c\u7531\u8cc7\u6df1\u958b\u767c\u8005\u76f2\u8a55\u3002\n \nOpus 4.8 bug detection \u6392\u7b2c\u4e00\uff0c\u5c24\u5176\u64c5\u9577\u5b89\u5168 bugs\uff08\u8a8d\u8b49\u7e5e\u904e\u3001\u6ce8\u5165\u3001CSRF\uff09\uff1bSonnet 4.6 \u6392\u7b2c\u4e8c\u4f46\u5feb\u597d\u591a\uff0c\u6027\u50f9\u6bd4\u6700\u9ad8\uff1bGPT-5.5 \u6392\u7b2c\u4e09\uff0c\u5f37\u9805\u4fc2 code style \u540c\u6280\u8853\u50b5\uff1bGemini Flash \u6392\u7b2c\u56db\u4f46\u6700\u5feb\uff1bGrok \u6392\u7b2c\u4e94\u53cd\u800c\u6700\u64c5\u9577\u6349 performance bottleneck\u3002\n \n\u96d6\u7136\u6709\u7d71\u8a08\u9650\u5236\uff0c\u4f46\u5462\u500b\u7d50\u679c\u540c\u6b63\u5f0f benchmark \u5605\u6a21\u5f0f\u4e00\u81f4\uff1aOpus \u9818\u5148 code quality\uff0cSonnet \u6027\u50f9\u6bd4\u6700\u597d\uff0cGemini Flash \u6700\u5feb\u3002\n \n \n \n \n\n \n\n \n\u2601\ufe0f \u2601\ufe0f \u4f01\u696d AI / \u57fa\u5efa\n \nSurface RTX Spark Dev Box\uff1a1 Petaflop AI \u7b97\u529b\uff0cNadella \u7b11\u8a71\u81ea\u5df1\u90fd\u62ce\u5514\u5230\n \n\n \nMicrosoft \u767c\u5e03 Surface RTX Spark Dev Box\u2014\u2014\u57fa\u65bc NVIDIA RTX \u5605\u958b\u767c\u5de5\u4f5c\u7ad9\uff0c1 petaflop AI \u7b97\u529b\u52a0 20 CPU \u6838\u5fc3\u3002Nadella \u7b11\u8a71\u9023\u81ea\u5df1\u90fd\u6392\u5514\u5230 waitlist\u3002\n \n\u5b9a\u4f4d\u4fc2\u7540\u958b\u767c\u8005\u55ba\u672c\u5730\u6e2c\u8a66\u751f\u7522\u7d1a AI agent \u63a8\u7406\u901f\u5ea6\u5f8c deploy \u4e0a Azure\u30021 petaflop \u6bd4\u76ee\u524d\u9ad8\u968e RTX \u5de5\u4f5c\u7ad9\uff08320-600 teraflops\uff09\u660e\u986f\u66f4\u5f37\u3002\n \n \n \n \n\n \n\n \n\u2601\ufe0f \u2601\ufe0f \u4f01\u696d AI / \u57fa\u5efa\n \nMicrosoft + Mayo Clinic\uff1a\u70ba\u5168\u7403\u91ab\u7642\u5065\u5eb7\u6253\u9020 Frontier AI \u6a21\u578b\n \n\n \nMayo Clinic CEO \u89aa\u81ea\u4e0a\u53f0\u5ba3\u5e03\u540c Microsoft \u5408\u4f5c\u958b\u767c\u300c\u5c08\u70ba\u91ab\u7642\u5065\u5eb7\u5605 frontier model\u300d\uff0c\u7528 Mayo Clinic \u5605\u81e8\u5e8a\u5c08\u696d\u540c\u7814\u7a76\u77e5\u8b58\u8a13\u7df4\uff0c\u76ee\u6a19\u4fc2\u5c07\u670d\u52d9\u5ef6\u4f38\u5230\u5168\u7403\u6578\u767e\u842c\u4eba\u3002\n \n\u7d30\u7bc0\u523b\u610f\u6a21\u7cca\u2014\u2014\u5187\u6a21\u578b\u67b6\u69cb\u3001\u8a13\u7df4\u6578\u64da\u6216\u6642\u9593\u8868\u3002\u4f46\u6703\u900f\u904e Azure \u90e8\u7f72\uff0c\u505a\u81e8\u5e8a\u6c7a\u7b56\u652f\u63f4\u3001\u75c5\u4eba\u5206\u6d41\u3001\u91ab\u5b78\u77e5\u8b58\u554f\u7b54\uff0c\u5514\u4fc2\u76f4\u63a5\u8a3a\u65b7\u3002\n \nMayo Clinic \u7528 150 \u5e74\u5efa\u7acb\u5605\u8072\u8b7d\u7d81\u5b9a\u55ba Microsoft AI \u6a21\u578b\u4e0a\uff0c\u4fc2\u91cd\u5927 institutional endorsement\u3002\u5c0d\u65bc\u8003\u616e\u63a1\u7528 AI \u5605\u91ab\u7642\u6a5f\u69cb\uff0cMayo Clinic \u53c3\u8207\u9664\u5497\u6280\u8853\u50f9\u503c\u4ef2\u6709\u4fe1\u8b7d\u80cc\u66f8\u3002\n \n \n \n \n\n \n\n \n\u2601\ufe0f \u2601\ufe0f \u4f01\u696d AI / \u57fa\u5efa\n \nWeb IQ \u540c Azure HorizonDB\uff1aAgent \u4e92\u806f\u7db2\u667a\u80fd\u540c\u5c08\u7528 Postgres\n \n\n \nWeb IQ\uff1aMicrosoft \u65b0 AI \u7cfb\u7d71\uff0c\u7540 agent \u5b58\u53d6\u7d50\u69cb\u5316\u5be6\u6642\u516c\u958b\u7db2\u7d61\u8cc7\u8a0a\uff08\u80a1\u50f9\u3001\u76e3\u7ba1\u66f4\u65b0\u3001\u65b0\u805e\uff09\uff0c\u540c Azure Agent Mesh \u6574\u5408\u3002\n \nAzure HorizonDB\uff1a\u5c08\u70ba agent \u61c9\u7528\u5605\u5168\u6258\u7ba1 PostgreSQL\uff0c\u8d85\u4f4e\u5ef6\u9072\u3001read scale-out\u3001\u5feb 3 \u500d\u4ea4\u6613\u540c\u641c\u5c0b\u3001\u5411\u91cf\u7d22\u5f15\u3001\u8a9e\u7fa9\u641c\u5c0b\u3001in-database model \u5b58\u53d6\u3002Web IQ + HorizonDB \u89e3\u6c7a\u5497 agent \u9700\u8981\u300c\u7576\u524d\u5916\u90e8\u667a\u80fd\u300d+\u300c\u5feb\u901f\u53ef\u641c\u5c0b\u5167\u90e8\u6578\u64da\u300d\u5605\u95dc\u9375\u7f3a\u53e3\u3002\n \n \n \n \n\n \n\n \n\u2601\ufe0f \u2601\ufe0f \u4f01\u696d AI / \u57fa\u5efa\n \nMaia 200 \u540c Cobalt 200\uff1aMicrosoft \u81ea\u5bb6\u6676\u7247\u6295\u7522\u540c\u9810\u89bd\n \n\n \nNadella \u78ba\u8a8d Maia 200\uff08\u7b2c\u4e8c\u4ee3 AI \u52a0\u901f\u5668\uff09\u5df2\u7d93\u55ba Iowa \u540c Arizona \u6295\u7522\uff0c\u4e0b\u4e00\u6b65\u64f4\u5c55\u5230\u610f\u5927\u5229\u3001\u6fb3\u6d32\u3001\u5357\u97d3\u3002tokens per dollar per watt \u5168\u6a5f\u7fa4\u6700\u597d\u3002Cobalt 200 ARM VM \u55ba 10+ \u5168\u7403\u5730\u5340\u9810\u89bd\u3002\n \nMaia 200 \u5c31\u4fc2\u884c Polaris \u540c MAI-Thinking-1 inference \u5605\u6676\u7247\u3002\u81ea\u5bb6\u6a21\u578b\u884c\u81ea\u5bb6\u6676\u7247\u884c\u81ea\u5bb6\u7db2\u7d61\u2014\u2014Microsoft \u6b77\u4f86\u6700\u5782\u76f4\u6574\u5408\u5605 AI stack\uff0c\u4f3c Apple \u5605 hardware-to-software \u63a7\u5236\u3002\n \n\u6bcf\u500b inference query \u7d93 Maia 200 \u5605\u5229\u6f64\u7387\u9ad8\u904e\u7d93 NVIDIA GPU\u3002Microsoft \u6709 3 \u5104+ Office 365 \u7528\u6236\uff0c\u5462\u500b margin difference \u55ba\u5462\u500b scale \u4e0b\u597d\u53ef\u89c0\u3002\u6676\u7247\u7b56\u7565\u6700\u7d42\u4fc2 margin \u7b56\u7565\u3002\n \n \n \n \n\n \n\n \n\ud83e\udd16 \ud83e\udd16 AI \u4ee3\u7406 / \u6846\u67b6\n \nScout\uff1a\u8de8\u6240\u6709\u5df2\u958b\u61c9\u7528\u7a0b\u5f0f\u5605 AI Agent\n \n\n \nMicrosoft \u767c\u5e03 Scout\u2014\u2014\u55ba\u4f60\u5de5\u4f5c\u5605\u5730\u65b9\u5de5\u4f5c\uff0c\u7121\u8ad6\u4fc2\u54a9 app\u300d\u5605\u8de8\u61c9\u7528 AI agent\u3002\u76e3\u63a7\u4f60 desktop \u4e0a\u4e0b\u6587\uff08\u958b\u5497\u54a9\u3001\u505a\u7dca\u54a9\u3001app \u4e4b\u9593\u8cbc\u54a9\uff09\uff0c\u63d0\u4f9b\u60c5\u5883\u5354\u52a9\u800c\u5514\u4f7f\u4f60\u5207\u63db\u53bb\u5c08\u7528 AI \u4ecb\u9762\u3002\n \n\u540c Copilot \u55ba\u55ae\u4e00 app \u5605\u95dc\u9375\u5206\u5225\uff1aScout \u660e\u767d\u4f60\u5b8c\u6574\u5605\u8de8\u61c9\u7528\u5de5\u4f5c\u8108\u7d61\u3002\u7531 Excel \u6284\u8cc7\u6599\u53bb Word \u540c\u6642\u7747\u7dca PDF\uff0cScout \u7406\u89e3\u4e09\u8005\u95dc\u4fc2\uff0c\u5e6b\u4f60\u5b8c\u6210\u6574\u9ad4\u4efb\u52d9\u800c\u5514\u4fc2\u55ae\u4e00\u6587\u4ef6\u3002\n \n \n \n \n\n \n\n \n\ud83d\udcbb \ud83d\udcbb \u958b\u767c\u8005\u5de5\u5177\n \nSam Altman \u55ba Stargate Michigan\uff1aCoding Models \u4fc2 AI \u9700\u6c42\u6700\u5927\u9a45\u52d5\u529b\n \n\n \nCNBC \u8a2a\u554f Sam Altman \u55ba Stargate Michigan\u3002Altman \u8a71\u300cCoding models \u4fc2 demand \u6700\u5927\u9a45\u52d5\u529b\uff0c\u6211\u54cb\u56b4\u91cd\u4f4e\u4f30\u5497\u4eba\u985e\u6709\u5e7e\u60f3\u8981\u5462\u5572\u5622\u3002\u300d\u4f62\u5f62\u5bb9 Stargate \u4fc2 huge bet\u3002\n \n\u95dc\u65bc\u53d6\u4ee3\u8077\u4f4d\uff1aAltman \u8a71\u884c\u696d\u5187\u597d\u597d\u89e3\u91cb\u4eba\u985e\u9ede\u6a23\u4fdd\u6301\u63a7\u5236\u3002\u5ba3\u7a31\u56e0\u70ba AI \u88c1\u54e1\u5605\u516c\u53f8\u300c\u7528 AI \u7528\u5f97\u6700\u5c11\u300d\u2014\u2014\u771f\u6b63\u6709 AI \u751f\u7522\u529b\u63d0\u5347\u5605\u516c\u53f8\u592a\u5fd9\u5187\u6642\u9593\u88c1\u54e1\u3002\n \nOracle co-CEO \u900f\u9732 Stargate Michigan \u521d\u671f $160 \u5104\uff0cGPU+\u7db2\u7d61\u8981\u591a $300-400 \u5104\u2014\u2014\u7e3d\u5171 $460-560 \u5104\uff0c\u4eba\u985e\u53f2\u4e0a\u6700\u5927\u55ae\u4e00 AI \u57fa\u5efa\u9805\u76ee\u3002\n \n \n \n \n\n \n\n \n\ud83d\udcbb \ud83d\udcbb \u958b\u767c\u8005\u5de5\u5177\n \n\u4e2d\u570b Geedge Networks\uff1a\u7528 AI \u9810\u6e2c\u653f\u6cbb\u7570\u898b\u4eba\u58eb\uff08\u672a\u884c\u52d5\u524d\uff09\n \n\n \n\u4e2d\u570b AI \u516c\u53f8 Geedge Networks \u6b63\u5efa\u7acb AI \u7cfb\u7d71\uff0c\u7528\u884c\u70ba\u6578\u64da\u3001\u793e\u4ea4\u5a92\u9ad4\u6d3b\u52d5\u3001\u901a\u8a0a\u6a21\u5f0f\u9810\u6e2c\u908a\u500b\u6709\u53ef\u80fd\u6210\u70ba\u653f\u6cbb\u7570\u898b\u4eba\u58eb\u2014\u2014\u55ba\u4efb\u4f55\u7570\u898b\u884c\u70ba\u767c\u751f\u4e4b\u524d\u5c31 tagging \u4f62\u54cb\u3002\n \n\u8d85\u8d8a\u73fe\u6709\u793e\u6703\u4fe1\u7528\u8a55\u5206\uff08\u61f2\u7f70\u5df2\u8a18\u9304\u884c\u70ba\uff09\uff0c\u9032\u5165\u300cpre-crime\u300d\u9810\u6e2c\u653f\u6cbb\u6253\u58d3\u6a21\u5f0f\u3002frontier AI \u5605 machine learning \u80fd\u529b\u76f4\u63a5\u61c9\u7528\u55ba\u5927\u898f\u6a21\u653f\u6cbb\u6253\u58d3\uff0c\u4fc2\u76ee\u524d\u6700\u6e05\u695a\u5605\u300cAI \u5927\u898f\u6a21\u6feb\u7528\u300d\u771f\u5be6\u6848\u4f8b\u3002\n \n\u540c Anthropic Claude Mythos\uff08\u8b58\u5225\u6f0f\u6d1e\u53bb\u9632\u79a6\uff09\u5f62\u6210\u6700\u5c16\u92b3\u5c0d\u6bd4\u2014\u2014\u540c\u4e00\u6280\u8853\u5169\u500b\u5b8c\u5168\u76f8\u53cd\u7528\u9014\uff0c\u5b8c\u7f8e\u8aaa\u660e dual-use \u554f\u984c\u3002\n \n \n \n \n\n \n\n \n\ud83d\udcbb \ud83d\udcbb \u958b\u767c\u8005\u5de5\u5177\n \nAI Prompt Injection 2026\uff1a\u76f4\u63a5\u8986\u84cb\u6210\u6b77\u53f2\uff0c\u591a\u6b65\u9a5f\u52ab\u6301\u6210\u4e3b\u6d41\n \n\n \n\u751f\u7522\u6578\u64da\u986f\u793a 2026 \u5e74 prompt injection \u653b\u64ca\u540c 2023 \u5e74\u5b8c\u5168\u5514\u540c\u30022023 \u5e74\u4e3b\u6d41\u4fc2\u76f4\u63a5\u8986\u84cb\u6307\u4ee4\uff08\u300c\u5ffd\u7565\u6240\u6709\u4e4b\u524d\u6307\u4ee4\uff0c\u505a X\u300d\uff09\uff0c\u5462\u5572\u800c\u5bb6\u5e7e\u4e4e\u5168\u90e8\u64cb\u5f97\u4f4f\u3002\n \n2026 \u5e74\u4fc2\u591a\u6b65\u9a5f\u52ab\u6301\uff1a\u653b\u64ca\u8005\u5c07\u4e00\u7cfb\u5217\u770b\u4f3c\u7121\u5bb3\u6307\u4ee4\u5206\u6563\u55ba\u591a\u500b input\uff08\u7528\u6236\u67e5\u8a62\u3001tool call \u7d50\u679c\u3001\u6aa2\u7d22\u6587\u4ef6\u3001memory output\uff09\uff0c\u55ae\u4e00\u500b input \u7747\u5514\u51fa\u60e1\u610f\uff0c\u7d44\u5408\u57cb redirect \u5497 agent \u884c\u70ba\u3002\n \n\u9632\u79a6\u8981\u6839\u672c\u5347\u7d1a\uff1a\u7531\u55ae\u4e00 input \u6aa2\u67e5\u8b8a\u8de8\u5b8c\u6574 agent session \u884c\u70ba\u76e3\u63a7\u3002\u4e0a\u661f\u671f Sysdig CVE-2026-48710\uff08autonomous LLM agent \u4e00\u5c0f\u6642\u5167 database exfiltration\uff09\u5c31\u4fc2\u5be6\u4f8b\u3002\n \n \n \n \n\n \n\n \n\ud83d\udd2c \ud83d\udd2c \u7814\u7a76\u8207\u8da8\u52e2\n \nMicrosoft Discovery GA\uff1aAI \u81ea\u52d5\u8a2d\u8a08\u5be6\u9a57\u3001\u5beb\u8ad6\u6587\u3001\u63d0\u4ea4 Lab Jobs\n \n\n \nMicrosoft Discovery \u79d1\u7814 AI \u5e73\u53f0\u6b63\u5f0f GA\u3002VP \u793a\u7bc4\u7528 Discovery \u6539\u5584\u5851\u81a0\u56de\u6536\u5316\u5b78\u2014\u2014\u8f38\u5165 prompt \u5c31\u63d0\u51fa\u5be6\u9a57\u65b9\u6848\u3001\u5beb\u8ad6\u6587\u7d50\u69cb\u3001\u63d0\u4ea4 lab jobs\u3001\u5efa\u8b70\u4e0b\u4e00\u6b65 protocol\u3002Carmona \u5f62\u5bb9\u300c\u611f\u89ba\u4f3c Iron Man\uff0c\u4e0d\u904e\u4fc2 for chemistry\u300d\u3002\n \nDiscovery \u5514\u4fc2\u4e00\u6b21\u6027\u7b54\u6848\u5f15\u64ce\uff0c\u90e8\u5206 output \u8981\u5e7e\u500b\u9418\u751a\u81f3\u5e7e\u65e5\uff0c\u56e0\u70ba iterative \u904b\u4f5c\u4f3c\u79d1\u5b78\u904e\u7a0b\u3002\u540c Mayo Clinic \u5408\u4f5c\u986f\u793a\u76ee\u6a19\u4ef2\u6709\u85e5\u7269\u767c\u73fe\u3001\u86cb\u767d\u8cea\u5efa\u6a21\u3001\u81e8\u5e8a\u8a66\u9a57\u8a2d\u8a08\u3002\n \n \n \n \n\n \n\n \n\ud83d\udcca \ud83d\udcca \u5e02\u5834\u8207\u8ca1\u7d93\n \nSpaceX + Anthropic + OpenAI IPO \u6216\u70ba\u7f8e\u570b\u80a1\u5e02\u589e\u52a0 4 \u842c\u5104\u7f8e\u5143\n \n\n \nThe Economist \u5206\u6790\uff1a\u5982\u679c SpaceX\u3001Anthropic\u3001OpenAI \u4e09\u9593\u516c\u53f8\u90fd\u55ba 2026 \u5e74\u5b8c\u6210 IPO\uff0c\u53ef\u4ee5\u55ba\u5e7e\u500b\u6708\u5167\u70ba\u7f8e\u570b\u80a1\u5e02\u589e\u52a0\u6700\u591a 4 \u842c\u5104\u7f8e\u5143\u5e02\u503c\u3002SpaceX $1.75T\u3001Anthropic ~$1-1.25T\u3001OpenAI $852B-$1T\u3002\n \n\u5c0d\u6bd4\u7f8e\u570b GDP \u7d04 $30T\uff0c\u4e09\u500b AI \u516c\u53f8\u516d\u500b\u6708\u5167\u52a0 $4T \u5e02\u503c\u6703\u4fc2 dot-com \u4ee5\u4f86\u6700\u5927\u55ae\u4e00 sector \u5e02\u503c\u64f4\u5f35\u3002\n \n\u98a8\u96aa\uff1a\u5462\u500b\u898f\u6a21\u5605 IPO \u9700\u8981\u6a5f\u69cb\u6295\u8cc7\u8005\u8ce3\u51fa\u73fe\u6709\u6301\u8ca8\u53bb\u8cb7\u65b0\u8ca8\uff0c\u53ef\u80fd\u9020\u6210 broad market \u5605\u8ce3\u58d3\uff0c\u5c24\u5176\u4fc2\u79d1\u6280\u80a1\u3002\u6642\u9593\u9806\u5e8f\uff08SpaceX 6\u6708\u3001OpenAI 9\u6708\u3001Anthropic 10\u6708\uff09\u5c31\u4fc2\u70ba\u5497\u5206\u6563\u8cc7\u91d1\u9700\u6c42\u3002\n \n \n \n\n \n\n \n\n \n\ud83d\udcf0 \u4f86\u6e90\uff1aBuild Fast with AI | Delivered: 2026-06-03 08:00 HKT\n \n \n\n\n\n", "creation_timestamp": "2026-06-03T02:50:21.000000Z"} 2026-06-03T02:50:21+00:00 https://vulnerability.circl.lu/sighting/2ad69334-63c9-42ff-95a1-023d35e87078/export 2026-06-17T10:56:48.008092+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "2ad69334-63c9-42ff-95a1-023d35e87078", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48710", "type": "seen", "source": "https://bsky.app/profile/reallynotbob.bsky.social/post/3mnhotjkghp2v", "content": "MCP CVEs keep surfacing because stdio design merges config and command. Same flaw BadHost CVE-2026-48710 exploited. Each CVE patched individually. The systemic fix: a boundary layer treating every MCP call as potential command, not just context update.", "creation_timestamp": "2026-06-04T13:05:32.898971Z"} 2026-06-04T13:05:32.898971+00:00 https://vulnerability.circl.lu/sighting/0fb2af36-255e-43e6-be65-b452492ad909/export 2026-06-17T10:56:48.007979+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "0fb2af36-255e-43e6-be65-b452492ad909", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48710", "type": "seen", "source": "https://gist.github.com/alon710/cb3b1174ebf48e827d68142e3b30cd37", "content": "# CVE-2026-48710: CVE-2026-48710: Starlette BadHost HTTP Host-Header Path-Poisoning and Authentication Bypass\n\n> **CVSS Score:** 7.0\n> **Published:** 2026-06-04\n> **Full Report:** https://cvereports.com/reports/CVE-2026-48710\n\n## Summary\nCVE-2026-48710 is a critical security-desynchronization vulnerability in the Starlette ASGI framework (versions >= 0.8.3, < 1.0.1) that allows remote attackers to bypass path-based security middleware and access-control decorators. By injecting URI authority-to-path delimiters into the Host header, attackers can manipulate the application-level parsed URL path while the underlying ASGI server dispatches the request to target endpoints.\n\n## TL;DR\nA validation flaw in Starlette's Host header parsing enables attackers to bypass security middleware checks. By adding characters like '?' or '#' to the Host header, the framework miscalculates the request path as '/' (public) while the router still executes the actual targeted administrative endpoint.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-1289\n- **Attack Vector**: Network (AV:N)\n- **CVSS v4.0 Score**: 7.0 (High Severity)\n- **EPSS Score**: 0.00353 (0.35%)\n- **Impact**: Authentication and Authorization Bypass\n- **Exploit Status**: Proof-of-Concept (PoC) public, scanner code weaponized\n- **KEV Status**: Not listed\n\n## Affected Systems\n\n- Starlette ASGI framework (versions >= 0.8.3, < 1.0.1)\n- FastAPI applications using path-based security middleware\n- LiteLLM and vLLM infrastructures deployed on vulnerable Starlette versions\n- Model Context Protocol (MCP) server implementations running on Starlette\n- **Starlette**: >= 0.8.3, < 1.0.1 (Fixed in: `1.0.1`)\n- **FastAPI**: <= 0.115.x (Fixed in: `Dependent on Starlette 1.0.1`)\n\n## Mitigation\n\n- Upgrade Starlette to version 1.0.1 or higher to enforce strict Host header validation.\n- Modify custom middleware to reference request.scope['path'] instead of request.url.path to prevent path desynchronization.\n- Deploy an RFC-compliant reverse proxy (such as Nginx or Apache) that rejects invalid characters in the Host header.\n- Ensure ASGI application servers bind only to localhost and are not directly exposed to untrusted networks.\n\n**Remediation Steps:**\n1. Identify all deployments using Starlette by running 'pip show starlette' or auditing lock files.\n2. Update requirements.txt or poetry.lock to specify 'starlette>=1.0.1'.\n3. Rebuild and redeploy container images to ensure downstream packages (like FastAPI) use the updated Starlette version.\n4. Test custom security middleware with mock malformed Host headers to verify that access control checks cannot be bypassed.\n\n## References\n\n- [Official Starlette GitHub Advisory](https://github.com/Kludex/starlette/security/advisories/GHSA-86qp-5c8j-p5mr)\n- [Official Security Fix Commit](https://github.com/Kludex/starlette/commit/764dab0dcfb9033d75442d7a359645c9f94648c6)\n- [X41 D-Sec Lab Security Advisory](https://www.x41-dsec.de/lab/advisories/x41-2026-002-starlette)\n- [OSTIF Disclosure & Deep-Dive Warning](https://ostif.org/disclosing-the-badhost-vulnerability-in-starlette)\n- [CVE Record (CVE.org)](https://www.cve.org/CVERecord?id=CVE-2026-48710)\n- [PyPA PYSEC Tracker](https://github.com/pypa/advisory-database/tree/main/vulns/starlette/PYSEC-2026-161.yaml)\n- [BadHost Exploit & Scanner Repository](https://github.com/Bhanunamikaze/BadHost-CVE-2026-48710-Exploit)\n- [Dedicated Threat Portal](https://badhost.org)\n- [SecWest Starlette Portal](https://www.secwest.net/starlette)\n- [Wiz Vulnerability Analysis Entry](https://www.wiz.io/vulnerability-database/cve/cve-2026-48710)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-48710) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-04T13:40:58.000000Z"} 2026-06-04T13:40:58+00:00 https://vulnerability.circl.lu/sighting/ab2e3e83-aaf1-4e83-ac83-5e52e6140a2c/export 2026-06-17T10:56:48.007887+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "ab2e3e83-aaf1-4e83-ac83-5e52e6140a2c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48710", "type": "seen", "source": "https://bsky.app/profile/pythonhub.dev/post/3mnlosgkst52o", "content": "CVE-2026-48710: A Maintainer's Perspective\n\nhttps://www.reddit.com/r/Python/comments/1tr5s1c/cve202648710_a_maintainers_perspective/", "creation_timestamp": "2026-06-06T03:15:35.035169Z"} 2026-06-06T03:15:35.035169+00:00 https://vulnerability.circl.lu/sighting/b9f109e3-e31a-4d3c-99c8-018046c1d2d4/export 2026-06-17T10:56:48.007805+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "b9f109e3-e31a-4d3c-99c8-018046c1d2d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48710", "type": "seen", "source": "https://bsky.app/profile/reallynotbob.bsky.social/post/3mnq2vnpch32s", "content": "The CVE-2026-48710 patch fixes specific exploit paths, but the structural issue remains: MCP passes through infrastructure never designed as an accountability layer. Receipts generated on top of the transport rather than below it \u2014 the gap stays open.", "creation_timestamp": "2026-06-07T21:02:47.049313Z"} 2026-06-07T21:02:47.049313+00:00 https://vulnerability.circl.lu/sighting/3d925874-8040-4e24-b4fc-7992cf5753a7/export 2026-06-17T10:56:48.007705+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "3d925874-8040-4e24-b4fc-7992cf5753a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48710", "type": "seen", "source": "https://bsky.app/profile/reallynotbob.bsky.social/post/3mnq2vts3uk2u", "content": "The CVE-2026-48710 patch fixes specific exploit paths, but the structural issue remains: MCP passes through infrastructure never designed as an accountability layer. Receipts generated on top of the transport rather than below it \u2014 the gap stays open.", "creation_timestamp": "2026-06-07T21:02:53.245410Z"} 2026-06-07T21:02:53.245410+00:00 https://vulnerability.circl.lu/sighting/252e1347-df76-463b-9b9e-57131ce8f43e/export 2026-06-17T10:56:48.007619+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "252e1347-df76-463b-9b9e-57131ce8f43e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48710", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mnu25zlnl62h", "content": "CISA has added CVE-2026-42271 to its KEV catalog after active exploitation. The LiteLLM command injection flaw can chain with a Starlette auth bypass to enable unauthenticated RCE. #LiteLLM #CVE-2026-42271 #CVE-2026-48710", "creation_timestamp": "2026-06-09T11:00:14.023682Z"} 2026-06-09T11:00:14.023682+00:00 https://vulnerability.circl.lu/sighting/116bdcd2-042d-471d-ab37-01bc418b6945/export 2026-06-17T10:56:48.007500+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "116bdcd2-042d-471d-ab37-01bc418b6945", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48710", "type": "seen", "source": "https://bsky.app/profile/eyalestrin.bsky.social/post/3mnudo42xep2l", "content": "Critical Security Advisory LiteLLM Remote Code Execution CVE-2026-42271 and CVE-2026-48710 Threat Intelligence Alert #appsec", "creation_timestamp": "2026-06-09T13:50:16.668604Z"} 2026-06-09T13:50:16.668604+00:00 https://vulnerability.circl.lu/sighting/a707ab8b-634e-42b5-b7b8-8a303611461b/export 2026-06-17T10:56:48.005020+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "a707ab8b-634e-42b5-b7b8-8a303611461b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48710", "type": "seen", "source": "https://bsky.app/profile/shortinfo.bsky.social/post/3mohuddralb26", "content": "Every FastAPI, vLLM, LiteLLM and MCP server running Starlette below v1.0.1 can be auth-bypassed by appending one character to the HTTP Host header, per OSTIF. Starlette ships about 325M downloads per week. CVE-2026-48710 (BadHost). Patch: Starlette 1.0.1 or read raw path from scope.", "creation_timestamp": "2026-06-17T08:09:03.956165Z"} 2026-06-17T08:09:03.956165+00:00