I know there's some active work on this (using LLMs, not traditional methods), not on the binary side but on the source analysis side. See https://grit.io/, which tries to detect bugs (and maybe vulnerabilities?) and automatically submits PRs to patch them for you. I think morgante is their contact on HN.
It feels like it'd be difficult to acquire a large corpus of vulnerabilities to train on.
It feels like it'd be difficult to acquire a large corpus of vulnerabilities to train on.