CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-27478	Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability Description: Heap-based buffer overflow in Windows Local Security Authority (LSA) allows an authorized attacker to elevate privileges locally. CVSS: HIGH (7.0) EPSS Score: 0.03% Source: CVE April 8th, 2025 (3 months ago)
CVE-2025-27477	Windows Telephony Service Remote Code Execution Vulnerability Description: Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network. CVSS: HIGH (8.8) EPSS Score: 0.06% Source: CVE April 8th, 2025 (3 months ago)
CVE-2025-27476	Windows Digital Media Elevation of Privilege Vulnerability Description: Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally. CVSS: HIGH (7.8) EPSS Score: 0.05% Source: CVE April 8th, 2025 (3 months ago)
CVE-2025-27475	Windows Update Stack Elevation of Privilege Vulnerability Description: Sensitive data storage in improperly locked memory in Windows Update Stack allows an authorized attacker to elevate privileges locally. CVSS: HIGH (7.0) EPSS Score: 0.03% Source: CVE April 8th, 2025 (3 months ago)
CVE-2025-27473	HTTP.sys Denial of Service Vulnerability Description: Uncontrolled resource consumption in Windows HTTP.sys allows an unauthorized attacker to deny service over a network. CVSS: HIGH (7.5) EPSS Score: 2.14% Source: CVE April 8th, 2025 (3 months ago)
CVE-2025-27470	Windows Standards-Based Storage Management Service Denial of Service Vulnerability Description: Uncontrolled resource consumption in Windows Standards-Based Storage Management Service allows an unauthorized attacker to deny service over a network. CVSS: HIGH (7.5) EPSS Score: 2.14% Source: CVE April 8th, 2025 (3 months ago)
CVE-2025-27469	Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability Description: Uncontrolled resource consumption in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to deny service over a network. CVSS: HIGH (7.5) EPSS Score: 2.14% Source: CVE April 8th, 2025 (3 months ago)
CVE-2025-27467	Windows Digital Media Elevation of Privilege Vulnerability Description: Use after free in Windows Digital Media allows an authorized attacker to elevate privileges locally. CVSS: HIGH (7.8) EPSS Score: 0.05% Source: CVE April 8th, 2025 (3 months ago)
CVE-2025-27198	Photoshop Desktop \| Heap-based Buffer Overflow (CWE-122) Description: Photoshop Desktop versions 25.12.1, 26.4.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. CVSS: HIGH (7.8) EPSS Score: 0.09% Source: CVE April 8th, 2025 (3 months ago)
CVE-2025-27196	Premiere Pro \| Heap-based Buffer Overflow (CWE-122) Description: Premiere Pro versions 25.1, 24.6.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. CVSS: HIGH (7.8) EPSS Score: 0.03% SSVC Exploitation: none Source: CVE April 8th, 2025 (3 months ago)