๐Ÿ›ก๏ธ NAIL Institute โ€” AVE Database

โ† Back to Database

Semantic Prompt Smuggling

๐Ÿ”ด CRITICAL injection proven AVE-2025-0037

ยท aka: Meaning-Layer Injection, Semantic Trojan

Summary

Adversarial inputs bypass syntactic filters by encoding malicious intent in semantically equivalent but structurally different phrasing. Traditional pattern-matching defences fail against paraphrase attacks.

Blast Radius

Complete bypass of input sanitisation. Agent executes prohibited actions while logs show clean inputs.

Prerequisites

Agent with keyword-based or regex-based input filtering.

Environment

  • Frameworks: LangGraph
  • Models tested: [Available in NAIL SDK]
  • Multi-agent: No
  • Tools required: No
  • Memory required: No

Related