CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-43058 |
Description: Memory corruption while processing IOCTL calls.
CVSS: HIGH (7.8) EPSS Score: 0.02%
April 7th, 2025 (3 months ago)
|
|
CVE-2024-33058 |
Description: Memory corruption while assigning memory from the source DDR memory(HLOS) to ADSP.
CVSS: HIGH (7.5) EPSS Score: 0.02%
April 7th, 2025 (3 months ago)
|
|
CVE-2025-3346 |
Description: A vulnerability was found in Tenda AC7 15.03.06.44. It has been rated as critical. Affected by this issue is the function formSetPPTPServer of the file /goform/SetPptpServerCfg. The manipulation of the argument pptp_server_start_ip/pptp_server_end_ip leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Eine kritische Schwachstelle wurde in Tenda AC7 15.03.06.44 ausgemacht. Davon betroffen ist die Funktion formSetPPTPServer der Datei /goform/SetPptpServerCfg. Durch Manipulation des Arguments pptp_server_start_ip/pptp_server_end_ip mit unbekannten Daten kann eine buffer overflow-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk erfolgen. Der Exploit steht zur öffentlichen Verfügung.
CVSS: HIGH (8.7) EPSS Score: 0.05%
April 7th, 2025 (3 months ago)
|
|
CVE-2024-11071 |
Description: Permissive Cross-domain Policy with Untrusted Domains vulnerability in local API server of DestinyECM solution(versions described below) which is developed and maintained by Cyberdigm may allow Cross-Site Request Forgery (CSRF) attack, which probabilistically enables JSON Hijacking (aka JavaScript Hijacking) via forgery web page.* Due to product customization, version information may differ from the following version description. For further inquiries, please contact the vendor.
CVSS: HIGH (7.7) EPSS Score: 0.02%
April 7th, 2025 (3 months ago)
|
|
CVE-2025-31175 |
Description: Deserialization mismatch vulnerability in the DSoftBus module
Impact: Successful exploitation of this vulnerability may affect service integrity.
CVSS: HIGH (8.4) EPSS Score: 0.01%
April 7th, 2025 (3 months ago)
|
|
CVE-2025-31173 |
Description: Memory write permission bypass vulnerability in the kernel futex module
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
CVSS: HIGH (8.8) EPSS Score: 0.01%
April 7th, 2025 (3 months ago)
|
|
CVE-2025-31172 |
Description: Memory write permission bypass vulnerability in the kernel futex module
Impact: Successful exploitation of this vulnerability may affect service confidentiality.
CVSS: HIGH (7.8) EPSS Score: 0.01%
April 7th, 2025 (3 months ago)
|
|
CVE-2025-31170 |
Description: Access control vulnerability in the security verification module
Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
CVSS: HIGH (8.4) EPSS Score: 0.01%
April 7th, 2025 (3 months ago)
|
|
CVE-2024-58127 |
Description: Access control vulnerability in the security verification module
Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
CVSS: HIGH (8.4) EPSS Score: 0.01%
April 7th, 2025 (3 months ago)
|
|
CVE-2024-58126 |
Description: Access control vulnerability in the security verification module
Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.
CVSS: HIGH (8.4) EPSS Score: 0.01%
April 7th, 2025 (3 months ago)
|