CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-0073 |
Description: Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to perform improper GPU memory processing operations to gain access to already freed memory.This issue affects Valhall GPU Kernel Driver: from r53p0 before r54p0; Arm 5th Gen GPU Architecture Kernel Driver: from r53p0 before r54p0.
EPSS Score: 0.02%
June 2nd, 2025 (about 1 month ago)
|
|
June 2nd, 2025 (about 1 month ago)
|
|
Description: Microsoft has released an out-of-band update to address a known issue causing some Windows 11 systems to enter recovery and fail to start while trying to install the KB5058405 May 2025 security update. [...]
June 2nd, 2025 (about 1 month ago)
|
|
🚨 Marked as known exploited on June 2nd, 2025 (about 1 month ago).
Description: Qualcomm has released security patches for three zero-day vulnerabilities in the Adreno Graphics Processing Unit (GPU) driver that impact dozens of chipsets and are actively exploited in targeted attacks. [...]
June 2nd, 2025 (about 1 month ago)
|
|
Description: The evolution of cyber threats has forced organizations across all industries to rethink their security strategies. As attackers become more sophisticated — leveraging encryption, living-off-the-land techniques, and lateral movement to evade traditional defenses — security teams are finding more threats wreaking havoc before they can be detected. Even after an attack has been identified, it can
June 2nd, 2025 (about 1 month ago)
|
|
Description: Outdoor gear giant The North Face has notified customers of a new credential stuffing attack that exposed personal account details, marking the second such security incident in just two months. The latest attack was detected on April 23, 2025, raising fresh concerns about the brand’s account security practices. According to the customer notice issued by …
The post The North Face Suffers New Credential Stuffing Customer Data Breach appeared first on CyberInsider.
June 2nd, 2025 (about 1 month ago)
|
|
CVE-2025-3951 |
Description: The WP-Optimize WordPress plugin before 4.2.0 does not properly escape user input when checking image compression statuses, which could allow users with the administrator role to conduct SQL Injection attacks in the context of Multi-Site WordPress configurations.
EPSS Score: 0.03%
June 2nd, 2025 (about 1 month ago)
|
|
Description: Cybersecurity researchers have warned of a new spear-phishing campaign that uses a legitimate remote access tool called Netbird to target Chief Financial Officers (CFOs) and financial executives at banks, energy companies, insurers, and investment firms across Europe, Africa, Canada, the Middle East, and South Asia.
"In what appears to be a multi-stage phishing operation, the attackers
June 2nd, 2025 (about 1 month ago)
|
|
Description: Pistolero (Mexico)
June 2nd, 2025 (about 1 month ago)
|
|
CVE-2025-25179 |
Description: Software installed and run as a non-privileged user may conduct improper GPU system calls to subvert GPU HW to write to arbitrary physical memory pages.
EPSS Score: 0.01%
June 2nd, 2025 (about 1 month ago)
|