Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
OpenAI is hopeful GPT-5 will compete a little more
Description: OpenAI's next big foundational model is GPT-5, and the AI startup is hoping that the model will compete a little more with rivals. [...]
Source: BleepingComputer
June 3rd, 2025 (4 days ago)
ZDI-25-321: GIMP ICO File Parsing Integer Overflow Remote Code Execution Vulnerability
Description: This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2025-5473.

EPSS Score: 0.06%

Source: Zero Day Initiative Published Advisories
June 3rd, 2025 (4 days ago)
ZDI-25-322: 2BrightSparks SyncBackFree Link Following Local Privilege Escalation Vulnerability
Description: This vulnerability allows local attackers to escalate privileges on affected installations of 2BrightSparks SyncBackFree. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. User interaction on the part of an administrator is also required. The ZDI has assigned a CVSS rating of 7.3. The following CVEs are assigned: CVE-2025-5474.

EPSS Score: 0.02%

Source: Zero Day Initiative Published Advisories
June 3rd, 2025 (4 days ago)
ZDI-25-323: Action1 Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
Description: This vulnerability allows local attackers to escalate privileges on affected installations of Action1. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2025-5480.

EPSS Score: 0.01%

Source: Zero Day Initiative Published Advisories
June 3rd, 2025 (4 days ago)
ZDI-25-324: Sante DICOM Viewer Pro DCM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Description: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2025-5481.

EPSS Score: 0.05%

Source: Zero Day Initiative Published Advisories
June 3rd, 2025 (4 days ago)
'Crocodilus' Sharpens Its Teeth on Android Users
Description: The data-stealing malware initially targeted users in Turkey but has since evolved into a global threat.
Source: Dark Reading
June 3rd, 2025 (4 days ago)
TXOne Networks Introduces Capability for Intelligent Vulnerability Mitigation
Source: Dark Reading
June 3rd, 2025 (4 days ago)
LayerX Launches ExtensionPedia
Source: Dark Reading
June 3rd, 2025 (4 days ago)
🏴‍☠️ Qilin has just published a new victim : FLOE International
Description: FLOE International, Inc. engages in the manufacture of aluminum docks, boat lifts, and trailers. It offers modular docks, roll-in docks, floating docks, dock accessories, boat lift accessories, snowmobile trailers, enclosed trailers, utility ...
Source: Ransomware.live
June 3rd, 2025 (4 days ago)
Hewlett Packard Enterprise warns of critical StoreOnce auth bypass
Description: Hewlett Packard Enterprise (HPE) has issued a security bulletin to warn about eight vulnerabilities impacting StoreOnce, its disk-based backup and deduplication solution. [...]
Source: BleepingComputer
June 3rd, 2025 (4 days ago)