CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2024-42117	drm/amd/display: ASSERT when failing to find index by plane/stream id Description: In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: ASSERT when failing to find index by plane/stream id [WHY] find_disp_cfg_idx_by_plane_id and find_disp_cfg_idx_by_stream_id returns an array index and they return -1 when not found; however, -1 is not a valid index number. [HOW] When this happens, call ASSERT(), and return a positive number (which is fewer than callers' array size) instead. This fixes 4 OVERRUN and 2 NEGATIVE_RETURNS issues reported by Coverity. EPSS Score: 0.04% Source: CVE January 17th, 2025 (6 months ago)
CVE-2024-40514	Insecure Permissions vulnerability in themesebrand Chatvia v.5.3.2 allows a remote attacker to escalate privileges via the User profile name and... Description: Insecure Permissions vulnerability in themesebrand Chatvia v.5.3.2 allows a remote attacker to escalate privileges via the User profile name and image upload functions. EPSS Score: 0.04% Source: CVE January 17th, 2025 (6 months ago)
CVE-2024-40513	An issue in themesebrand Chatvia v.5.3.2 allows a remote attacker to execute arbitrary code via the User profile Upload image function. Description: An issue in themesebrand Chatvia v.5.3.2 allows a remote attacker to execute arbitrary code via the User profile Upload image function. EPSS Score: 0.04% Source: CVE January 17th, 2025 (6 months ago)
	Daily Dose of Dark Web Informer - January 16th, 2025 Description: This daily article is intended to make it easier for those who want to stay updated with my regular Dark Web Informer and X/Twitter posts. Source: DarkWebInformer January 17th, 2025 (6 months ago)
	GDPR complaints filed against TikTok, Temu for sending user data to China Description: Non-profit privacy advocacy group "None of Your Business" (noyb) has filed six complaints against TikTok, AliExpress, SHEIN, Temu, WeChat, and Xiaomi, for unlawfully transferring European user's data to China and infringing European Union's general data protection regulation (GDPR). [...] Source: BleepingComputer January 16th, 2025 (6 months ago)
	183M Patient Records Exposed: Fortified Health Security Releases 2025 Healthcare Cybersecurity Report Source: Dark Reading January 16th, 2025 (6 months ago)
	SEALSQ in Cooperation With WISeKey Expands Post-Quantum Footprint in Saudi Arabia Source: Dark Reading January 16th, 2025 (6 months ago)
	CISA and US and International Partners Publish Guidance for OT Owners and Operators Source: Dark Reading January 16th, 2025 (6 months ago)
	Biden's Cybersecurity EO Leaves Trump a Comprehensive Blueprint for Defense Description: New order mandates securing the federal software supply chain and communications networks, as well as deploying AI tools to protect critical infrastructure from cyberattacks — but will the Trump administration follow through? Source: Dark Reading January 16th, 2025 (6 months ago)
	Sorb Claims to be Selling the Data of Dream Weavers Description: Sorb Claims to be Selling the Data of Dream Weavers Source: DarkWebInformer January 16th, 2025 (6 months ago)