# confusion

5 articlestagged with “confusion”

RAG-Memory Confusion Attacks

Exploit the interaction between RAG retrieval and agent memory to create conflicting contexts that bypass safety.

Confuse A2A capability negotiation to make orchestrators delegate inappropriate tasks to unprivileged agents.

Confusing router/dispatcher agents to misdirect tasks to inappropriate specialist agents.

Exploit role boundaries in chat APIs by injecting assistant-role messages and system-level instructions.

Walkthrough of confusing model tool-use decisions to invoke unintended functions or skip safety-critical tools.