CVE Alert: CVE-2025-1050
Vulnerability Summary: CVE-2025-1050 Sonos Era 300 Out-of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary...
threatintel
CVE Alert: CVE-2025-2765
Vulnerability Summary: CVE-2025-2765 CarlinKit CPC200-CCPA Wireless Hotspot Hard-Coded Credentials Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication...
CVE Alert: CVE-2025-2762
Vulnerability Summary: CVE-2025-2762 CarlinKit CPC200-CCPA Missing Root of Trust Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate...
CVE Alert: CVE-2025-2763
Vulnerability Summary: CVE-2025-2763 CarlinKit CPC200-CCPA Improper Verification of Cryptographic Signature Code Execution Vulnerability. This vulnerability allows physically present attackers to...
CVE Alert: CVE-2025-2764
Vulnerability Summary: CVE-2025-2764 CarlinKit CPC200-CCPA update.cgi Improper Verification of Cryptographic Signature Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to...
CVE Alert: CVE-2025-2767
Vulnerability Summary: CVE-2025-2767 Arista NG Firewall User-Agent Cross-Site Scripting Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute...
[SILENT] – Ransomware Victim: Fleet Canada
Ransomware Group: SILENT VICTIM NAME: Fleet Canada NOTE: No files or stolen information are by RedPacket Security. Any legal issues...
[INCRANSOM] – Ransomware Victim: arkansasprimarycare[.]com
Ransomware Group: INCRANSOM VICTIM NAME: arkansasprimarycarecom NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...
[DEVMAN] – Ransomware Victim: China Harbour Engeneiring Company FILE SAMPLE 1 avaliable /CHEC/CHECsample[.]zip
Ransomware Group: DEVMAN VICTIM NAME: China Harbour Engeneiring Company FILE SAMPLE 1 avaliable /CHEC/CHECsamplezip NOTE: No files or stolen information...
Cobalt Strike Beacon Detected – 113[.]45[.]225[.]150:8888
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 45[.]136[.]15[.]39:80
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 121[.]37[.]217[.]210:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 36[.]41[.]71[.]241:2086
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 194[.]3[.]165[.]55:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 160[.]19[.]79[.]251:8443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 185[.]43[.]4[.]70:8005
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
Cobalt Strike Beacon Detected – 31[.]58[.]136[.]13:443
The Information provided at the time of posting was detected as "Cobalt Strike". Depending on when you are viewing this...
CVE Alert: CVE-2025-2761
Vulnerability Summary: CVE-2025-2761 GIMP FLI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute...
CVE Alert: CVE-2025-3900
Vulnerability Summary: CVE-2025-3900 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Colorbox allows Cross-Site Scripting...
CVE Alert: CVE-2025-3902
Vulnerability Summary: CVE-2025-3902 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Block Class allows Cross-Site...
CVE Alert: CVE-2025-2773
Vulnerability Summary: CVE-2025-2773 BEC Technologies Multiple Routers sys ping Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers...
CVE Alert: CVE-2025-3901
Vulnerability Summary: CVE-2025-3901 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Bootstrap Site Alert allows...
CVE Alert: CVE-2025-2772
Vulnerability Summary: CVE-2025-2772 BEC Technologies Multiple Routers Insufficiently Protected Credentials Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose...
CVE Alert: CVE-2025-2770
Vulnerability Summary: CVE-2025-2770 BEC Technologies Multiple Routers Cleartext Password Storage Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose...
