Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2025-23105
An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free in the mobile processor leads to privilege...
Description: An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free in the mobile processor leads to privilege escalation.

EPSS Score: 0.01%

Source: CVE
June 2nd, 2025 (6 days ago)

CVE-2025-23099
An issue was discovered in Samsung Mobile Processor Exynos 1480 and 2400. The lack of a length check leads to out-of-bounds writes.
Description: An issue was discovered in Samsung Mobile Processor Exynos 1480 and 2400. The lack of a length check leads to out-of-bounds writes.

EPSS Score: 0.04%

Source: CVE
June 2nd, 2025 (6 days ago)
🏴‍☠️ Blacklock has just published a new victim : Riverdell Construction
Description: Commercial & Residential Construction Oregon, United States <25 Employees Riverdell Construction is a premier custom home builder based in Southern Oregon, specializing in luxury custom homes and high-end residential properties across Medford, Jacksonville, Ashland, and Applegate. Revenue <$5 Million
Source: Ransomware.live
June 2nd, 2025 (6 days ago)
Alleged sale of Revolut Business Account Verified for Czech Republic
Description: Alleged sale of Revolut Business Account Verified for Czech Republic
Source: DarkWebInformer
June 2nd, 2025 (6 days ago)
🏴‍☠️ Devman has just published a new victim : DHL THAILAND
Description: TBD
Source: Ransomware.live
June 2nd, 2025 (6 days ago)
🏴‍☠️ Lynx has just published a new victim : Diyar
Description: www.diyar.com - Architecture, Engineering & Design
Source: Ransomware.live
June 2nd, 2025 (6 days ago)

CVE-2025-45387
osTicket prior to v1.17.6 and v1.18.2 are vulnerable to Broken Access Control Vulnerability in /scp/ajax.php.
Description: osTicket prior to v1.17.6 and v1.18.2 are vulnerable to Broken Access Control Vulnerability in /scp/ajax.php.

EPSS Score: 0.03%

Source: CVE
June 2nd, 2025 (6 days ago)

CVE-2025-27956
Directory Traversal vulnerability in WebLaudos 24.2 (04) allows a remote attacker to obtain sensitive information via the id parameter.
Description: Directory Traversal vulnerability in WebLaudos 24.2 (04) allows a remote attacker to obtain sensitive information via the id parameter.

EPSS Score: 0.9%

Source: CVE
June 2nd, 2025 (6 days ago)

CVE-2025-27955
Clinical Collaboration Platform 12.2.1.5 has a weak logout system where the session token remains valid after logout and allows a remote attacker...
Description: Clinical Collaboration Platform 12.2.1.5 has a weak logout system where the session token remains valid after logout and allows a remote attacker to obtain sensitive information and execute arbitrary code.

EPSS Score: 0.07%

Source: CVE
June 2nd, 2025 (6 days ago)

CVE-2025-27954
An issue in Clinical Collaboration Platform 12.2.1.5 allows a remote attacker to obtain sensitive information and execute arbitrary code via the...
Description: An issue in Clinical Collaboration Platform 12.2.1.5 allows a remote attacker to obtain sensitive information and execute arbitrary code via the usertoken function of default.aspx.

EPSS Score: 0.09%

Source: CVE
June 2nd, 2025 (6 days ago)