CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

	European Privacy Group Sues TikTok and AliExpress for Illicit Data Transfers to China Description: Austrian privacy non-profit None of Your Business (noyb) has filed complaints accusing companies like TikTok, AliExpress, SHEIN, Temu, WeChat, and Xiaomi of violating data protection regulations in the European Union by unlawfully transferring users' data to China. The advocacy group is seeking an immediate suspension of such transfers, stating the companies in question cannot shield user data Source: TheHackerNews January 17th, 2025 (6 months ago)
	Russian APT Phishes Kazakh Gov't for Strategic Intel Description: A highly targeted cyber-intelligence campaign adds fuel to the increasingly complex relationship between the two former Soviet states. Source: Dark Reading January 17th, 2025 (6 months ago)
	Just as your LLM once again goes off the rails, Cisco, Nvidia are at the door smiling Source: TheRegister January 17th, 2025 (6 months ago)
	MSI - 249,990 breached accounts Description: In July 2024, MSI inadvertently exposed hundreds of thousands of customer records related to RMA claims that were subsequently found to be publicly accessible. The data included 250k unique email addresses alongside names, phone numbers, physical addresses and warranty claims. When contacted about the incident, MSI advised that "there is no evidence the information was ever accessed" and that "the security incident we had did not trigger state data breach notification obligations" due to the absence of "(social security number, driver's license number….etc)". Source: HaveIBeenPwnedLatestBreaches January 17th, 2025 (6 months ago)
	GM parks claims that driver location data was shared to insurers, pushed up premiums Source: TheRegister January 17th, 2025 (6 months ago)
CVE-2025-22916	RE11S v1.11 was discovered to contain a stack overflow via the pppUserName parameter in the formPPPoESetup function. Description: RE11S v1.11 was discovered to contain a stack overflow via the pppUserName parameter in the formPPPoESetup function. EPSS Score: 0.05% Source: CVE January 17th, 2025 (6 months ago)
CVE-2025-22913	RE11S v1.11 was discovered to contain a stack overflow via the rootAPmac parameter in the formStaDrvSetup function. Description: RE11S v1.11 was discovered to contain a stack overflow via the rootAPmac parameter in the formStaDrvSetup function. EPSS Score: 0.04% Source: CVE January 17th, 2025 (6 months ago)
CVE-2025-22912	RE11S v1.11 was discovered to contain a command injection vulnerability via the component /goform/formAccept. Description: RE11S v1.11 was discovered to contain a command injection vulnerability via the component /goform/formAccept. EPSS Score: 0.05% Source: CVE January 17th, 2025 (6 months ago)
CVE-2025-22907	RE11S v1.11 was discovered to contain a stack overflow via the selSSID parameter in the formWlSiteSurvey function. Description: RE11S v1.11 was discovered to contain a stack overflow via the selSSID parameter in the formWlSiteSurvey function. EPSS Score: 0.05% Source: CVE January 17th, 2025 (6 months ago)
CVE-2025-22906	RE11S v1.11 was discovered to contain a command injection vulnerability via the L2TPUserName parameter at /goform/setWAN. Description: RE11S v1.11 was discovered to contain a command injection vulnerability via the L2TPUserName parameter at /goform/setWAN. EPSS Score: 0.05% Source: CVE January 17th, 2025 (6 months ago)