Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
|
Description: A fix for a critical flaw in a tool allowing organizations to run GPU-accelerated containers released last year did not fully mitigate the issue, spurring the need to patch a secondary flaw to protect organizations that rely on NVIDIA processors for AI workloads.
April 16th, 2025 (4 days ago)
|
CVE-2024-56736 |
Description: Server-Side Request Forgery (SSRF) vulnerability in Apache HertzBeat.
This issue affects Apache HertzBeat (incubating): before 1.7.0.
Users are recommended to upgrade to version 1.7.0, which fixes the issue.
EPSS Score: 0.03% SSVC Exploitation: none
April 16th, 2025 (4 days ago)
|
|
CVE-2024-27224 |
Description: In strncpy of strncpy.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
EPSS Score: 0.03% SSVC Exploitation: none
April 16th, 2025 (4 days ago)
|
|
CVE-2024-27210 |
Description: In policy_check of fvp.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
EPSS Score: 0.03% SSVC Exploitation: none
April 16th, 2025 (4 days ago)
|
|
CVE-2024-25990 |
Description: In pktproc_perftest_gen_rx_packet_sktbuf_mode of link_rx_pktproc.c, there is a possible out of bounds write due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.
EPSS Score: 0.03% SSVC Exploitation: none
April 16th, 2025 (4 days ago)
|
|
CVE-2024-25849 |
Description: In the module "Make an offer" (makeanoffer) <= 1.7.1 from PrestaToolKit for PrestaShop, a guest can perform SQL injection via MakeOffers::checkUserExistingOffer()` and `MakeOffers::addUserOffer()` .
EPSS Score: 0.03% SSVC Exploitation: none
April 16th, 2025 (4 days ago)
|
|
CVE-2024-22008 |
Description: In config_gov_time_windows of tmu.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
EPSS Score: 0.03% SSVC Exploitation: none
April 16th, 2025 (4 days ago)
|
|
|
Description: ANFARM is a manufacturer of generic pharmaceutical formulations f
or human use. The company sells its products to 31 countries and
acts as third party manufacturer to 45 clients.
We are ready to upload more than 35 GB of essential corporate doc
uments such as: contact numbers and e-mail addresses of governmen
ts(!) of a few countries like Portugal, Spain and a few others (i
f somebody is interested), detailed financial data (audits, payme
nt details, reports), corporate NDA’s, employee personal informat
ion, clients data, etc.
April 16th, 2025 (4 days ago)
|
|
|
Description: Dale | Bailey, an Association is a joint venture of Bailey Archit
ecture Education, P.A.and Dale Partners Architects P.A. The assoc
iation was formed in August 2008 to create a firm with unsurpasse
d experience in educational facility planning, design and constru
ction.
We are ready to upload over 148 GB of essential corporate documen
ts such as: contact numbers and e-mail addresses of employees and
partners, employee personal files, detailed financial data (audi
ts, payment details, reports), corporate NDA’s, etc.
April 16th, 2025 (4 days ago)
|
|
Description: “The CVE Program is invaluable to the cyber community and a priority of CISA,” a CISA spokesperson said. “We appreciate our partners’ and stakeholders’ patience.”
April 16th, 2025 (4 days ago)
|