Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
GPS Spoofing Attacks Spike in Middle East, Southeast Asia
Description: An Indian disaster-relief flight delivering aid is the latest air-traffic incident, as attacks increase in the Middle East and Myanmar and along the India-Pakistan border.
Source: Dark Reading
April 17th, 2025 (3 days ago)

CVE-2025-2073
Out-of-Bounds Read in ChromeOS Kernel ip_set_bitmap_ip.c
Description: Out-of-Bounds Read in ip_set_bitmap_ip.c in Google ChromeOS Kernel Versions 6.1, 5.15, 5.10, 5.4, 4.19. on All devices where Termina is used allows an attacker with CAP_NET_ADMIN privileges to cause memory corruption and potentially escalate privileges via crafted ipset commands.

EPSS Score: 0.02%

Source: CVE
April 17th, 2025 (3 days ago)

CVE-2025-1704
ComponentInstaller Vulnerability Allowing Chromebook Unenrollment and Potential Device Management Key Interception in ChromeOS
Description: ComponentInstaller Modification in ComponentInstaller in Google ChromeOS 124.0.6367.34 on Chromebooks allows enrolled users with local access to unenroll devices and intercept device management requests via loading components from the unencrypted stateful partition.

EPSS Score: 0.02%

Source: CVE
April 17th, 2025 (3 days ago)

CVE-2025-1568
Gerrit Access Control Vulnerability Allows Malicious Code Injection in ChromeOS
Description: Access Control Vulnerability in Gerrit chromiumos project configuration in Google ChromeOS 131.0.6778.268 allows an attacker with a registered Gerrit account to inject malicious code into ChromeOS projects and potentially achieve Remote Code Execution and Denial of Service via editing trusted pipelines by insufficient access controls and misconfigurations in Gerrit's project.config.

EPSS Score: 0.12%

Source: CVE
April 17th, 2025 (3 days ago)

CVE-2025-1566
DNS Leak Vulnerability in ChromeOS Android Subsystem VPN Implementation Due to Unstable WireGuard Integration
Description: DNS Leak in Native System VPN in Google ChromeOS Dev Channel on ChromeOS 129.0.6668.36 allows network observers to expose plaintext DNS queries via failure to properly tunnel DNS traffic during VPN state transitions.

EPSS Score: 0.02%

Source: CVE
April 17th, 2025 (3 days ago)
🏴‍☠️ Safepay has just published a new victim : frapack.de
Description: [AI generated] Frapack.de is a German company specialized in the distribution and production of packaging materials. Their product range includes plastic and paper packaging, bags, industrial packaging materials, and packaging for food & beverages. They cater to both large-scale industrial needs and smaller commercial requirements. They're dedicated to providing sustainable, high-quality, custom packaging solutions for various industries.
Source: Ransomware.live
April 16th, 2025 (3 days ago)
🏴‍☠️ Safepay has just published a new victim : eichele-bau.de
Description: [AI generated] N/A
Source: Ransomware.live
April 16th, 2025 (3 days ago)
🏴‍☠️ Safepay has just published a new victim : foerster-schwanau.de
Description: [AI generated] N/A
Source: Ransomware.live
April 16th, 2025 (3 days ago)
🏴‍☠️ Safepay has just published a new victim : extremefire.com.au
Description: [AI generated] Extreme Fire Solutions is an Australian company that specializes in fire protection services. They are experts in designing, installing, and maintaining fire safety systems. They provide a wide range of services including fire sprinkler systems, fire extinguisher supply and maintenance, fire detection and alarm systems, and fire safety training.
Source: Ransomware.live
April 16th, 2025 (3 days ago)
🏴‍☠️ Safepay has just published a new victim : kirkel.de
Description: [AI generated] N/A
Source: Ransomware.live
April 16th, 2025 (3 days ago)