threatintel

CVE Alert: CVE-2025-1932

March 5, 2025

Vulnerability Summary: CVE-2025-1932 An inconsistent comparator in xslt/txNodeSorter could have resulted in potentially exploitable out-of-bounds access. Only affected version 122...

CVE Alert: CVE-2025-1933

March 5, 2025

Vulnerability Summary: CVE-2025-1933 On 64-bit CPUs, when the JIT compiles WASM i32 return values they can pick up bits from...

CVE Alert: CVE-2025-27426

March 5, 2025

Vulnerability Summary: CVE-2025-27426 Malicious websites utilizing a server-side redirect to an internal error page could result in a spoofed website...

CVE Alert: CVE-2025-27425

March 5, 2025

Vulnerability Summary: CVE-2025-27425 Scanning certain QR codes that included text with a website URL could allow the URL to be...

CVE Alert: CVE-2024-50705

March 5, 2025

Vulnerability Summary: CVE-2024-50705 Unauthenticated reflected cross-site scripting (XSS) vulnerability in Uniguest Tripleplay before 24.2.1 allows remote attackers to execute arbitrary...

CVE Alert: CVE-2024-50706

March 5, 2025

Vulnerability Summary: CVE-2024-50706 Unauthenticated SQL injection vulnerability in Uniguest Tripleplay before 24.2.1 allows remote attackers to execute arbitrary SQL queries...

CVE Alert: CVE-2025-1941

March 5, 2025

Vulnerability Summary: CVE-2025-1941 Under certain circumstances, a user opt-in setting that Focus should require authentication before use could have been...

CVE Alert: CVE-2025-1943

March 5, 2025

Vulnerability Summary: CVE-2025-1943 Memory safety bugs present in Firefox 135 and Thunderbird 135. Some of these bugs showed evidence of...

CVE Alert: CVE-2025-1942

March 5, 2025

Vulnerability Summary: CVE-2025-1942 When String.toUpperCase() caused a string to get longer it was possible for uninitialized memory to be incorporated...

[FOG] – Ransomware Victim: SCOLARO FETTER GRIZANTI & McGOUGH, P[.]C[.] (scolaro[.]com)

March 5, 2025

Ransomware Group: FOG VICTIM NAME: SCOLARO FETTER GRIZANTI & McGOUGH, PC (scolarocom) NOTE: No files or stolen information are by...

[RANSOMHUB] – Ransomware Victim: www[.]black-star[.]fr

March 5, 2025

Ransomware Group: RANSOMHUB VICTIM NAME: wwwblack-starfr NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CVE Alert: CVE-2025-23368

March 5, 2025

Vulnerability Summary: CVE-2025-23368 A flaw was found in Wildfly Elytron integration. The component does not implement sufficient measures to prevent...

CVE Alert: CVE-2025-27156

March 5, 2025

Vulnerability Summary: CVE-2025-27156 Tuleap is an Open Source Suite to improve management of software developments and collaboration. The mass emailing...

CVE Alert: CVE-2024-9149

March 5, 2025

Vulnerability Summary: CVE-2024-9149 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Wind Media E-Commerce...

CVE Alert: CVE-2024-50707

March 5, 2025

Vulnerability Summary: CVE-2024-50707 Unauthenticated remote code execution vulnerability in Uniguest Tripleplay before 24.2.1 allows remote attackers to execute arbitrary code...

CVE Alert: CVE-2024-50704

March 5, 2025

Vulnerability Summary: CVE-2024-50704 Unauthenticated remote code execution vulnerability in Uniguest Tripleplay before 24.2.1 allows remote attackers to execute arbitrary code...

CVE Alert: CVE-2025-27401

March 5, 2025

Vulnerability Summary: CVE-2025-27401 Tuleap is an Open Source Suite to improve management of software developments and collaboration. In a standard...

CVE Alert: CVE-2025-27155

March 5, 2025

Vulnerability Summary: CVE-2025-27155 Pinecone is an experimental overlay routing protocol suite which is the foundation of the current P2P Matrix...

CVE Alert: CVE-2025-27402

March 5, 2025

Vulnerability Summary: CVE-2025-27402 Tuleap is an Open Source Suite to improve management of software developments and collaboration. Tuleap is missing...

CVE Alert: CVE-2025-27507

March 5, 2025

Vulnerability Summary: CVE-2025-27507 The open-source identity infrastructure software Zitadel allows administrators to disable the user self-registration. ZITADEL's Admin API contains...

CVE Alert: CVE-2025-27150

March 5, 2025

Vulnerability Summary: CVE-2025-27150 Tuleap is an Open Source Suite to improve management of software developments and collaboration. The password to...

[AKIRA] – Ransomware Victim: Adrenalina

March 5, 2025

Ransomware Group: AKIRA VICTIM NAME: Adrenalina NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[AKIRA] – Ransomware Victim: Cyncly Company

March 5, 2025

Ransomware Group: AKIRA VICTIM NAME: Cyncly Company NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[LYNX] – Ransomware Victim: Schmiedetechnik Plettenberg GmbH & Co KG

March 5, 2025

Ransomware Group: LYNX VICTIM NAME: Schmiedetechnik Plettenberg GmbH & Co KG NOTE: No files or stolen information are by RedPacket...

threatintel

CVE Alert: CVE-2025-1932

CVE Alert: CVE-2025-1933

CVE Alert: CVE-2025-27426

CVE Alert: CVE-2025-27425

CVE Alert: CVE-2024-50705

CVE Alert: CVE-2024-50706

CVE Alert: CVE-2025-1941

CVE Alert: CVE-2025-1943

CVE Alert: CVE-2025-1942

[FOG] – Ransomware Victim: SCOLARO FETTER GRIZANTI & McGOUGH, P[.]C[.] (scolaro[.]com)

[RANSOMHUB] – Ransomware Victim: www[.]black-star[.]fr

CVE Alert: CVE-2025-23368

CVE Alert: CVE-2025-27156

CVE Alert: CVE-2024-9149

CVE Alert: CVE-2024-50707

CVE Alert: CVE-2024-50704

CVE Alert: CVE-2025-27401

CVE Alert: CVE-2025-27155

CVE Alert: CVE-2025-27402

CVE Alert: CVE-2025-27507

CVE Alert: CVE-2025-27150

[AKIRA] – Ransomware Victim: Adrenalina

[AKIRA] – Ransomware Victim: Cyncly Company

[LYNX] – Ransomware Victim: Schmiedetechnik Plettenberg GmbH & Co KG

Cobalt Strike Beacon Detected – 156[.]238[.]224[.]164:80

Cobalt Strike Beacon Detected – 111[.]229[.]0[.]18:443

CVE Alert: CVE-2025-4864

CVE Alert: CVE-2025-4865

CVE Alert: CVE-2025-4861

You may have missed