threatintel

CVE Alert: CVE-2024-45541

January 7, 2025

Vulnerability Summary: CVE-2024-45541 Memory corruption when IOCTL call is invoked from user-space to read board data. Affected Endpoints: No affected...

CVE Alert: CVE-2024-45546

January 7, 2025

Vulnerability Summary: CVE-2024-45546 Memory corruption while processing FIPS encryption or decryption IOCTL call invoked from user-space. Affected Endpoints: No affected...

CVE Alert: CVE-2024-45559

January 7, 2025

Vulnerability Summary: CVE-2024-45559 Transient DOS can occur when GVM sends a specific message type to the Vdev-FastRPC backend. Affected Endpoints:...

CVE Alert: CVE-2024-45542

January 7, 2025

Vulnerability Summary: CVE-2024-45542 Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver. Affected...

CVE Alert: CVE-2024-12970

January 7, 2025

Vulnerability Summary: CVE-2024-12970 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in TUBITAK BILGEM...

CVE Alert: CVE-2024-45553

January 7, 2025

Vulnerability Summary: CVE-2024-45553 Memory corruption can occur when process-specific maps are added to the global list. If a map is...

CVE Alert: CVE-2024-45558

January 7, 2025

Vulnerability Summary: CVE-2024-45558 Transient DOS can occur when the driver parses the per STA profile IE and tries to access...

CVE Alert: CVE-2024-45550

January 7, 2025

Vulnerability Summary: CVE-2024-45550 Memory corruption occurs when invoking any IOCTL-calling application that executes all MCDM driver IOCTL calls. Affected Endpoints:...

CVE Alert: CVE-2024-45555

January 7, 2025

Vulnerability Summary: CVE-2024-45555 Memory corruption can occur if an already verified IFS2 image is overwritten, bypassing boot verification. This allows...

[MORPHEUS] – Ransomware Victim: Pus Gmbh

January 7, 2025

Ransomware Group: MORPHEUS VICTIM NAME: Pus Gmbh NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[MORPHEUS] – Ransomware Victim: Arrotex Pharmaceuticals

January 7, 2025

Ransomware Group: MORPHEUS VICTIM NAME: Arrotex Pharmaceuticals NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[AKIRA] – Ransomware Victim: Drivestream

January 7, 2025

Ransomware Group: AKIRA VICTIM NAME: Drivestream NOTE: No files or stolen information are by RedPacket Security. Any legal issues relating...

[AKIRA] – Ransomware Victim: Drywall Partitions

January 7, 2025

Ransomware Group: AKIRA VICTIM NAME: Drywall Partitions NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

[AKIRA] – Ransomware Victim: AAA Environmental

January 7, 2025

Ransomware Group: AKIRA VICTIM NAME: AAA Environmental NOTE: No files or stolen information are by RedPacket Security. Any legal issues...

CVE Alert: CVE-2024-31914

January 7, 2025

Vulnerability Summary: CVE-2024-31914 IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.2 is vulnerable to stored...

CVE Alert: CVE-2024-51111

January 7, 2025

Vulnerability Summary: CVE-2024-51111 Cross-Site Scripting (XSS) vulnerability in Pnetlab 5.3.11 allows an attacker to inject malicious scripts into a web...

CVE Alert: CVE-2024-8474

January 7, 2025

Vulnerability Summary: CVE-2024-8474 OpenVPN Connect before version 3.5.0 can contain the configuration profile's clear-text private key which is logged in...

CVE Alert: CVE-2024-5594

January 7, 2025

Vulnerability Summary: CVE-2024-5594 OpenVPN before 2.6.11 does not santize PUSH_REPLY messages properly which attackers can use to inject unexpected arbitrary...

CVE Alert: CVE-2024-31913

January 7, 2025

Vulnerability Summary: CVE-2024-31913 IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.2 is vulnerable to stored...

CVE Alert: CVE-2025-21611

January 7, 2025

Vulnerability Summary: CVE-2025-21611 tgstation-server is a production scale tool for BYOND server management. Prior to 6.12.3, roles used to authorize...

CVE Alert: CVE-2023-6605

January 7, 2025

Vulnerability Summary: CVE-2023-6605 A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET requests to...

CVE Alert: CVE-2023-6601

January 7, 2025

Vulnerability Summary: CVE-2023-6601 A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows bypassing unsafe file extension checks and...

CVE Alert: CVE-2023-6604

January 7, 2025

Vulnerability Summary: CVE-2023-6604 A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially...

CVE Alert: CVE-2025-21612

January 7, 2025

Vulnerability Summary: CVE-2025-21612 TabberNeue is a MediaWiki extension that allows the wiki to create tabs. Prior to 2.7.2, TabberTransclude.php doesn't...

threatintel

CVE Alert: CVE-2024-45541

CVE Alert: CVE-2024-45546

CVE Alert: CVE-2024-45559

CVE Alert: CVE-2024-45542

CVE Alert: CVE-2024-12970

CVE Alert: CVE-2024-45553

CVE Alert: CVE-2024-45558

CVE Alert: CVE-2024-45550

CVE Alert: CVE-2024-45555

[MORPHEUS] – Ransomware Victim: Pus Gmbh

[MORPHEUS] – Ransomware Victim: Arrotex Pharmaceuticals

[AKIRA] – Ransomware Victim: Drivestream

[AKIRA] – Ransomware Victim: Drywall Partitions

[AKIRA] – Ransomware Victim: AAA Environmental

CVE Alert: CVE-2024-31914

CVE Alert: CVE-2024-51111

CVE Alert: CVE-2024-8474

CVE Alert: CVE-2024-5594

CVE Alert: CVE-2024-31913

CVE Alert: CVE-2025-21611

CVE Alert: CVE-2023-6605

CVE Alert: CVE-2023-6601

CVE Alert: CVE-2023-6604

CVE Alert: CVE-2025-21612

[GLOBAL] – Ransomware Victim: entab[.]se

[AKIRA] – Ransomware Victim: Murex Petroleum

[AKIRA] – Ransomware Victim: HRConnects, LLC

[AKIRA] – Ransomware Victim: Meleam S[.]p[.]A[.]

Microsoft Dangles Extended Windows 10 Support In Exchange For Reward Points

You may have missed