threatintel

CVE Alert: CVE-2025-20158

February 20, 2025

Vulnerability Summary: CVE-2025-20158 A vulnerability in the debug shell of Cisco Video Phone 8875 and Cisco Desk Phone 9800 Series...

CVE Alert: CVE-2024-52541

February 20, 2025

Vulnerability Summary: CVE-2024-52541 Dell Client Platform BIOS contains a Weak Authentication vulnerability. A high privileged attacker with local access could...

CVE Alert: CVE-2023-47160

February 20, 2025

Vulnerability Summary: CVE-2023-47160 IBM Cognos Controller 11.0.0 through 11.0.1 FP3 and IBM Controller 11.1.0 is vulnerable to an XML External...

CVE Alert: CVE-2025-27089

February 20, 2025

Vulnerability Summary: CVE-2025-27089 Directus is a real-time API and App dashboard for managing SQL database content. In affected versions if...

CVE Alert: CVE-2025-1118

February 20, 2025

Vulnerability Summary: CVE-2025-1118 A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown...

CVE Alert: CVE-2024-53974

February 20, 2025

Vulnerability Summary: CVE-2024-53974 Adobe Experience Manager versions 6.5.21 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that...

CVE Alert: CVE-2024-45777

February 20, 2025

Vulnerability Summary: CVE-2024-45777 A flaw was found in grub2. The calculation of the translation buffer when reading a language .mo...

CVE Alert: CVE-2025-1426

February 20, 2025

Vulnerability Summary: CVE-2025-1426 Heap buffer overflow in GPU in Google Chrome on Android prior to 133.0.6943.126 allowed a remote attacker...

CVE Alert: CVE-2025-1006

February 20, 2025

Vulnerability Summary: CVE-2025-1006 Use after free in Network in Google Chrome prior to 133.0.6943.126 allowed a remote attacker to potentially...

CVE Alert: CVE-2024-5706

February 20, 2025

Vulnerability Summary: CVE-2024-5706 The product receives input from an upstream component, but it does not restrict or incorrectly restricts the...

CVE Alert: CVE-2023-51297

February 20, 2025

Vulnerability Summary: CVE-2023-51297 A lack of rate limiting in the 'Email Settings' feature of PHPJabbers Hotel Booking System v4.0 allows...

CVE Alert: CVE-2025-0624

February 20, 2025

Vulnerability Summary: CVE-2025-0624 A flaw was found in grub2. During the network boot process, when trying to search for the...

CVE Alert: CVE-2025-0677

February 20, 2025

Vulnerability Summary: CVE-2025-0677 A flaw was found in grub2. When performing a symlink lookup, the grub's UFS module checks the...

CVE Alert: CVE-2025-0893

February 20, 2025

Vulnerability Summary: CVE-2025-0893 Symantec Diagnostic Tool (SymDiag), prior to 3.0.79, may be susceptible to a Privilege Escalation vulnerability. Affected Endpoints:...

CVE Alert: CVE-2025-24989

February 20, 2025

Vulnerability Summary: CVE-2025-24989 An improper access control vulnerability in Power Pages allows an unauthorized attacker to elevate privileges over a...

CVE Alert: CVE-2024-37360

February 20, 2025

Vulnerability Summary: CVE-2024-37360 Hitachi Vantara Pentaho Business Analytics Server - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')...

CVE Alert: CVE-2024-5705

February 20, 2025

Vulnerability Summary: CVE-2024-5705 The product performs an authorization check when an actor attempts to access a resource or perform an...

CVE Alert: CVE-2025-21355

February 20, 2025

Vulnerability Summary: CVE-2025-21355 Missing Authentication for Critical Function in Microsoft Bing allows an unauthorized attacker to execute code over a...

CVE Alert: CVE-2024-37359

February 20, 2025

Vulnerability Summary: CVE-2024-37359 The web server receives a URL or similar request from an upstream component and retrieves the contents...

[INCRANSOM] – Ransomware Victim: ehdd[.]com

February 20, 2025

Ransomware Group: INCRANSOM VICTIM NAME: ehddcom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[TERMITE] – Ransomware Victim: Ligentia

February 20, 2025

Ransomware Group: TERMITE VICTIM NAME: Ligentia NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

CISA: CISA Releases Twelve Industrial Control Systems Advisories

February 20, 2025

CISA Releases Twelve Industrial Control Systems Advisories CISA released twelve Industrial Control Systems (ICS) advisories on January 16, 2025. These...

CISA: CISA Releases Three Industrial Control Systems Advisories

February 20, 2025

CISA Releases Three Industrial Control Systems Advisories CISA released three Industrial Control Systems (ICS) advisories on January 21, 2025. These...

CISA: CISA and Partners Release Call to Action to Close the National Software Understanding Gap

February 20, 2025

CISA and Partners Release Call to Action to Close the National Software Understanding Gap Today, CISA—in partnership with the Defense Advanced...

threatintel

CVE Alert: CVE-2025-20158

CVE Alert: CVE-2024-52541

CVE Alert: CVE-2023-47160

CVE Alert: CVE-2025-27089

CVE Alert: CVE-2025-1118

CVE Alert: CVE-2024-53974

CVE Alert: CVE-2024-45777

CVE Alert: CVE-2025-1426

CVE Alert: CVE-2025-1006

CVE Alert: CVE-2024-5706

CVE Alert: CVE-2023-51297

CVE Alert: CVE-2025-0624

CVE Alert: CVE-2025-0677

CVE Alert: CVE-2025-0893

CVE Alert: CVE-2025-24989

CVE Alert: CVE-2024-37360

CVE Alert: CVE-2024-5705

CVE Alert: CVE-2025-21355

CVE Alert: CVE-2024-37359

[INCRANSOM] – Ransomware Victim: ehdd[.]com

[TERMITE] – Ransomware Victim: Ligentia

CISA: CISA Releases Twelve Industrial Control Systems Advisories

CISA: CISA Releases Three Industrial Control Systems Advisories

CISA: CISA and Partners Release Call to Action to Close the National Software Understanding Gap

Cobalt Strike Beacon Detected – 124[.]222[.]81[.]106:8888

Cobalt Strike Beacon Detected – 8[.]141[.]166[.]236:8888

Cobalt Strike Beacon Detected – 112[.]74[.]184[.]37:8888

Cobalt Strike Beacon Detected – 211[.]149[.]159[.]163:8888

Cobalt Strike Beacon Detected – 47[.]100[.]168[.]4:8888

You may have missed