CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-46786	Zoom Workplace Apps - Improper Neutralization of Special Elements Description: Improper neutralization of special elements in some Zoom Workplace Apps may allow an authenticated user to impact app integrity via network access. CVSS: MEDIUM (4.3) EPSS Score: 0.03% Source: CVE May 14th, 2025 (about 1 month ago)
CVE-2025-46785	Zoom Workplace Apps for Windows - Buffer Over-read Description: Buffer over-read in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. CVSS: MEDIUM (6.5) EPSS Score: 0.04% Source: CVE May 14th, 2025 (about 1 month ago)
CVE-2025-4664	Insufficient policy enforcement in Loader in Google Chrome prior to 136.0.7103.113 allowed a remote attacker to leak cross-origin data via a... 🚨 Marked as known exploited on May 15th, 2025 (about 1 month ago). Description: Insufficient policy enforcement in Loader in Google Chrome prior to 136.0.7103.113 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High) CVSS: MEDIUM (4.3) EPSS Score: 0.06% Source: CVE May 14th, 2025 (about 1 month ago)
CVE-2025-30668	Zoom Workplace Apps - NULL Pointer Dereference Description: Integer underflow in some Zoom Workplace Apps may allow an authenticated user to conduct a denial of service via network access. CVSS: MEDIUM (6.5) EPSS Score: 0.05% Source: CVE May 14th, 2025 (about 1 month ago)
CVE-2025-30667	Zoom Workplace Apps - NULL Pointer Dereference Description: NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. CVSS: MEDIUM (6.5) EPSS Score: 0.04% Source: CVE May 14th, 2025 (about 1 month ago)
CVE-2025-30666	Zoom Workplace Apps for Windows - NULL Pointer Dereference Description: NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. CVSS: MEDIUM (6.5) EPSS Score: 0.04% Source: CVE May 14th, 2025 (about 1 month ago)
CVE-2025-30665	Zoom Workplace Apps for Windows - NULL Pointer Dereference Description: NULL pointer dereference in some Zoom Workplace Apps for Windows may allow an authenticated user to conduct a denial of service via network access. CVSS: MEDIUM (6.5) EPSS Score: 0.04% Source: CVE May 14th, 2025 (about 1 month ago)
CVE-2025-30664	Zoom Workplace Apps - Improper Neutralization of Special Elements Description: Improper neutralization of special elements in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via local access. CVSS: MEDIUM (6.6) EPSS Score: 0.02% Source: CVE May 14th, 2025 (about 1 month ago)
CVE-2025-44186	SourceCodester Best Employee Management System 1.0 is vulnerable to Cross Site Request Forgery (CSRF) in /admin/Operation/User.php page. Description: SourceCodester Best Employee Management System 1.0 is vulnerable to Cross Site Request Forgery (CSRF) in /admin/Operation/User.php page. CVSS: MEDIUM (5.4) EPSS Score: 0.02% Source: CVE May 14th, 2025 (about 1 month ago)
CVE-2025-44184	SourceCodester Best Employee Management System V1.0 is vulnerable to Cross Site Scripting (XSS) in /admin/profile.php via the website_image, fname,... Description: SourceCodester Best Employee Management System V1.0 is vulnerable to Cross Site Scripting (XSS) in /admin/profile.php via the website_image, fname, lname, contact, username, and address parameters. CVSS: MEDIUM (4.8) EPSS Score: 0.03% Source: CVE May 14th, 2025 (about 1 month ago)