Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
|
Description: For nine days in September 2023, the world was rocked by an “Unidentified Seismic Object.”
June 3rd, 2025 (5 days ago)
|
|
Description: Microsoft and CrowdStrike have announced that they are teaming up to align their individual threat actor taxonomies by publishing a new joint threat actor mapping.
"By mapping where our knowledge of these actors align, we will provide security professionals with the ability to connect insights faster and make decisions with greater confidence," Vasu Jakkal, corporate vice president at Microsoft
June 3rd, 2025 (5 days ago)
|
|
Description: Google has revealed that it will no longer trust digital certificates issued by Chunghwa Telecom and Netlock citing "patterns of concerning behavior observed over the past year."
The changes are expected to be introduced in Chrome 139, which is scheduled for public release in early August 2025. The current major version is 137.
The update will affect all Transport Layer Security (TLS)
June 3rd, 2025 (5 days ago)
|
|
🚨 Marked as known exploited on June 3rd, 2025 (5 days ago).
Description: Google has released a security update for Chrome desktop, addressing three vulnerabilities, including a critical zero-day flaw in the V8 JavaScript engine that attackers are actively exploiting. The patch, now rolling out to Windows, Mac, and Linux users via version 137.0.7151.68/.69, aims to protect millions of Chrome users from potential heap corruption attacks. The zero-day, …
The post Google Patches Actively Exploited Zero-Day in Chrome’s V8 Engine appeared first on CyberInsider.
June 3rd, 2025 (5 days ago)
|
|
Description: In May 2025, hosting provider ColoCrossing identified a data breach that impacted customers of their ColoCloud virtual server product. ColoCrossing advised the incident was isolated to their cloud/VPS platform and stemmed from a single sign-on vulnerability. 7k email addresses were exposed in the incident along with names and MD5-Crypt password hashes.
June 3rd, 2025 (5 days ago)
|
|
🚨 Marked as known exploited on June 3rd, 2025 (5 days ago).
Description: Google on Monday released out-of-band fixes to address three security issues in its Chrome browser, including one that it said has come under active exploitation in the wild.
The high-severity flaw is being tracked as CVE-2025-5419, and has been flagged as an out-of-bounds read and write vulnerability in the V8 JavaScript and WebAssembly engine.
"Out of bounds read and write in V8 in Google
EPSS Score: 6.23%
June 3rd, 2025 (5 days ago)
|
|
Description: PC Time Tracer provided by Keiyo System Co., LTD is configured with an improper file access permission settings.
June 3rd, 2025 (5 days ago)
|
|
|
Description: TimeWorks provided by Keiyo System Co., LTD contains a path traversal vulnerability.
June 3rd, 2025 (5 days ago)
|
|
Description: WC Smith is headquartered in Washington, DC, and founded in 1969, is a multidisciplinary real estate firm providing real estate services to the Washington metropolitan area. We provide you with up-to-date databases SAGE, MySql. Also contracts and personal data of employees, enjoy viewing.
June 3rd, 2025 (5 days ago)
|
CVE-2025-5419 |
🚨 Marked as known exploited on June 3rd, 2025 (5 days ago).
Description: Out of bounds read and write in V8 in Google Chrome prior to 137.0.7151.68 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
EPSS Score: 6.23%
June 3rd, 2025 (6 days ago)
|