CVE Alert: CVE-2025-4296
Vulnerability Summary: CVE-2025-4296 URL Redirection to Untrusted Site ('Open Redirect') vulnerability in HotelRunner B2B allows Forceful Browsing.This issue affects B2B:...
threatintel
CVE Alert: CVE-2025-40599
Vulnerability Summary: CVE-2025-40599 An authenticated arbitrary file upload vulnerability exists in the SMA 100 series web management interface. A remote...
CVE Alert: CVE-2025-4411
Vulnerability Summary: CVE-2025-4411 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Dataprom Informatics PACS-ACSS...
CVE Alert: CVE-2025-33076
Vulnerability Summary: CVE-2025-33076 IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 is vulnerable to a stack-based buffer overflow, caused...
CVE Alert: CVE-2025-33077
Vulnerability Summary: CVE-2025-33077 IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 is vulnerable to a stack-based buffer overflow, caused...
CVE Alert: CVE-2025-36117
Vulnerability Summary: CVE-2025-36117 IBM Db2 Mirror for i 7.4, 7.5, and 7.6 does not disallow the session id after use...
CVE Alert: CVE-2025-36116
Vulnerability Summary: CVE-2025-36116 IBM Db2 Mirror for i 7.4, 7.5, and 7.6 GUI is affected by cross-site WebSocket hijacking vulnerability....
CVE Alert: CVE-2025-54090
Vulnerability Summary: CVE-2025-54090 A bug in Apache HTTP Server 2.4.64 results in all "RewriteCond expr ..." tests evaluating as "true"....
[EVEREST] – Ransomware Victim: New American Funding – Full leak published
Ransomware Group: EVEREST VICTIM NAME: New American Funding - Full leak published NOTE: No files or stolen information are by...
[QILIN] – Ransomware Victim: Metricon Homes
Ransomware Group: QILIN VICTIM NAME: Metricon Homes NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
CVE Alert: CVE-2025-40596
Vulnerability Summary: CVE-2025-40596 A Stack-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause...
CVE Alert: CVE-2025-40597
Vulnerability Summary: CVE-2025-40597 A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause...
CVE Alert: CVE-2025-40598
Vulnerability Summary: CVE-2025-40598 A Reflected cross-site scripting (XSS) vulnerability exists in the SMA100 series web interface, allowing a remote unauthenticated...
CVE Alert: CVE-2025-33020
Vulnerability Summary: CVE-2025-33020 IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 transmits sensitive information without encryption that could allow...
CVE Alert: CVE-2025-6018
Vulnerability Summary: CVE-2025-6018 A Local Privilege Escalation (LPE) vulnerability has been discovered in pam-config within Linux Pluggable Authentication Modules (PAM)....
CVE Alert: CVE-2025-50481
Vulnerability Summary: CVE-2025-50481 A cross-site scripting (XSS) vulnerability in the component /blog/blogpost/add of Mezzanine CMS v6.1.0 allows attackers to execute...
CVE Alert: CVE-2025-8069
Vulnerability Summary: CVE-2025-8069 During the AWS Client VPN client installation on Windows devices, the install process references the C:\usr\local\windows-x86_64-openssl-localbuild\ssl directory...
CVE Alert: CVE-2025-46171
Vulnerability Summary: CVE-2025-46171 vBulletin 3.8.7 is vulnerable to a denial-of-service condition via the misc.php?do=buddylist endpoint. If an authenticated user has...
CVE Alert: CVE-2025-2633
Vulnerability Summary: CVE-2025-2633 Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in lvre!UDecStrToNum that may...
CVE Alert: CVE-2025-2634
Vulnerability Summary: CVE-2025-2634 Out of bounds read vulnerability due to improper bounds checking in NI LabVIEW in fontmgr may result...
$380m Lawsuit Claims Intruder Got Clorox’s Passwords From Cognizant Simply Byasking
Clorox is suing its service desk provider, Cognizant, for $380 million in a California state court, alleging the IT support...
Copilot Vision On Windows 11 Sends Data To Microsoft Servers
Microsoft is again throwing AI at Windows 11 to see what sticks, releasing features including the even more eyebrow-raising successor...
CVE Alert: CVE-2025-4439
Vulnerability Summary: CVE-2025-4439 An issue has been discovered in GitLab CE/EE affecting all versions from 15.10 before 18.0.5, 18.1 before...
CVE Alert: CVE-2025-50477
Vulnerability Summary: CVE-2025-50477 A URL redirection in lbry-desktop v0.53.9 allows attackers to redirect victim users to attacker-controlled pages. Affected Endpoints:...
