Monthly Archive

How AI-Automated Fuzzing Uncovered a Vulnerability in wolfSSL

Feb 27, 2025 By Code Intelligence In Code Intelligence

Despite wolfSSL’s rigorous software testing practices, in October 2024, Code Intelligence—an application security vendor—discovered a potentially exploitable defect in wolfSSL. Remarkably, the potential vulnerability was found without human intervention. The only manual step was executing a single command to trigger autonomous fuzz testing. Watch the video for a live demo of AI-automated fuzzing.

View Video

Code Intelligence

Read more about How AI-Automated Fuzzing Uncovered a Vulnerability in wolfSSL

AI-Automated Fuzzing Found a Heap Buffer Overflow in AWS C Common Library

Feb 26, 2025 By Markus Zoppelt In Code Intelligence

A critical heap buffer overflow vulnerability in the AWS C Common library was discovered autonomously through an AI-automated fuzz testing solution, CI Fuzz, and has been fully addressed with a patch. In this post, we explore the vulnerability and its potential impact on embedded systems.

Read Post

Code Intelligence

Read more about AI-Automated Fuzzing Found a Heap Buffer Overflow in AWS C Common Library

How AI Test Agent autonomously finds bugs

Feb 17, 2025 By Code Intelligence In Code Intelligence

A few weeks ago, we introduced Spark, an AI Test Agent that autonomously uncovers bugs in unknown code with just a single command. Watch the video to see how Spark generated 3 successful fuzz tests, identified a severe vulnerability, and achieved 79% code coverage with just one command. Spark has already identified several real-world vulnerabilities in open-source projects, even those that are continuously fuzzed.

View Video

Code Intelligence

Read more about How AI Test Agent autonomously finds bugs

Top Six Most Dangerous Vulnerabilities in C and C++

Feb 14, 2025 By Natalia Kazankova In Code Intelligence

C and C++ programming are notorious for being bug-prone. Let’s look at the most dangerous software weaknesses in 2024 that are relevant for C and C++, so that you know what type of issues to test your code against in 2025. We examined the 2024 CWE Top 25 Most Dangerous Software Weaknesses list developed by Common Weakness Enumeration (CWE) and identified weaknesses relevant to C/C++. These weaknesses can become vulnerabilities. We explained how they occur and how you can uncover them.