CVE Alert: CVE-2025-1006
Vulnerability Summary: CVE-2025-1006 Use after free in Network in Google Chrome prior to 133.0.6943.126 allowed a remote attacker to potentially...
threatintel
CVE Alert: CVE-2024-5706
Vulnerability Summary: CVE-2024-5706 The product receives input from an upstream component, but it does not restrict or incorrectly restricts the...
CVE Alert: CVE-2023-51297
Vulnerability Summary: CVE-2023-51297 A lack of rate limiting in the 'Email Settings' feature of PHPJabbers Hotel Booking System v4.0 allows...
CVE Alert: CVE-2025-0624
Vulnerability Summary: CVE-2025-0624 A flaw was found in grub2. During the network boot process, when trying to search for the...
CVE Alert: CVE-2025-0677
Vulnerability Summary: CVE-2025-0677 A flaw was found in grub2. When performing a symlink lookup, the grub's UFS module checks the...
CVE Alert: CVE-2025-0893
Vulnerability Summary: CVE-2025-0893 Symantec Diagnostic Tool (SymDiag), prior to 3.0.79, may be susceptible to a Privilege Escalation vulnerability. Affected Endpoints:...
CVE Alert: CVE-2025-21355
Vulnerability Summary: CVE-2025-21355 Missing Authentication for Critical Function in Microsoft Bing allows an unauthorized attacker to execute code over a...
CVE Alert: CVE-2024-37359
Vulnerability Summary: CVE-2024-37359 The web server receives a URL or similar request from an upstream component and retrieves the contents...
CVE Alert: CVE-2025-24989
Vulnerability Summary: CVE-2025-24989 An improper access control vulnerability in Power Pages allows an unauthorized attacker to elevate privileges over a...
CVE Alert: CVE-2024-37360
Vulnerability Summary: CVE-2024-37360 Hitachi Vantara Pentaho Business Analytics Server - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...
CVE Alert: CVE-2024-5705
Vulnerability Summary: CVE-2024-5705 The product performs an authorization check when an actor attempts to access a resource or perform an...
[INCRANSOM] – Ransomware Victim: ehdd[.]com
Ransomware Group: INCRANSOM VICTIM NAME: ehddcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[TERMITE] – Ransomware Victim: Ligentia
Ransomware Group: TERMITE VICTIM NAME: Ligentia NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
CISA: CISA Releases Twelve Industrial Control Systems Advisories
CISA Releases Twelve Industrial Control Systems Advisories CISA released twelve Industrial Control Systems (ICS) advisories on January 16, 2025. These...
CISA: CISA Releases Three Industrial Control Systems Advisories
CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on January 21, 2025. These...
CISA: CISA and Partners Release Call to Action to Close the National Software Understanding Gap
CISA and Partners Release Call to Action to Close the National Software Understanding Gap Today, CISA—in partnership with the Defense Advanced...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA and FBI Release Updated Guidance on Product Security Bad Practices
CISA and FBI Release Updated Guidance on Product Security Bad Practices In partnership with the Federal Bureau of Investigation (FBI),...
CISA: CISA and FBI Release Advisory on How Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications
CISA and FBI Release Advisory on How Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications CISA, in partnership with...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Adds One Known Exploited Vulnerability to Catalog
CISA Adds One Known Exploited Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: CISA Releases Six Industrial Control Systems Advisories
CISA Releases Six Industrial Control Systems Advisories CISA released six Industrial Control Systems (ICS) advisories on January 23, 2025. These...
CISA: CISA Releases Seven Industrial Control Systems Advisories
CISA Releases Seven Industrial Control Systems Advisories CISA released seven Industrial Control Systems (ICS) advisories on January 28, 2025. These...
CISA: CISA Releases Fact Sheet Detailing Embedded Backdoor Function of Contec CMS8000 Firmware
CISA Releases Fact Sheet Detailing Embedded Backdoor Function of Contec CMS8000 Firmware CISA released a fact sheet, Contec CMS8000 Contains...
