Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
ZDI-25-310: Linux Kernel ksmbd Session Setup Null Pointer Dereference Denial-of-Service Vulnerability
Description: This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Linux Kernel. Authentication is not required to exploit this vulnerability, but only systems with ksmbd enabled are vulnerable. The ZDI has assigned a CVSS rating of 6.8.
Source: Zero Day Initiative Published Advisories
May 29th, 2025 (12 days ago)

CVE-2025-46701
Apache Tomcat: Security constraint bypass for CGI scripts
Description: Improper Handling of Case Sensitivity vulnerability in Apache Tomcat's GCI servlet allows security constraint bypass of security constraints that apply to the pathInfo component of a URI mapped to the CGI servlet. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.6, from 10.1.0-M1 through 10.1.40, from 9.0.0.M1 through 9.0.104. Users are recommended to upgrade to version 11.0.7, 10.1.41 or 9.0.105, which fixes the issue.

EPSS Score: 0.02%

Source: CVE
May 29th, 2025 (12 days ago)
Zscaler's Buyout of Red Canary Shows Telemetry's Value
Description: Red Canary's MDR portfolio complements Zscaler's purchase last year of Israeli startup Avalor, which automates collection, curation, and enrichment of security data.
Source: Dark Reading
May 29th, 2025 (12 days ago)
🏴‍☠️ Safepay has just published a new victim : usmortgage.com
Description: [AI generated] USMortgage.com is a financial service provider located in the United States, specializing in home mortgages. The company offers a variety of loan products, including conventional, FHA, VA, USDA, and jumbo mortgages. It seeks to harmonize technology with customer service to streamline home financing and refinancing processes for borrowers. USMortgage.com prides itself on transparency, education, and personalized customer support.
Source: Ransomware.live
May 29th, 2025 (12 days ago)
'Everest Group' Extorts Global Orgs via SAP's HR Tool
Description: In addition to Coca-Cola, entities in Abu Dhabi, Jordan, Namibia, South Africa, and Switzerland are experiencing extortion attacks, all involving stolen SAP SuccessFactor data.
Source: Dark Reading
May 29th, 2025 (12 days ago)
DorkEye: A Python Script for Ethical Dorking
Description: DorkEye: A Python Script for Ethical Dorking
Source: DarkWebInformer
May 29th, 2025 (12 days ago)
Why is China deep in US networks? 'They're preparing for war,' HR McMaster tells lawmakers
Source: TheRegister
May 29th, 2025 (12 days ago)
ConnectWise breached in cyberattack linked to nation-state hackers
Description: IT management software firm ConnectWise says a suspected state-sponsored cyberattack breached its environment and impacted a limited number of ScreenConnect customers. [...]
Source: BleepingComputer
May 29th, 2025 (12 days ago)
ConnectWise says nation-state attack targeted multiple ScreenConnect customers
Description: The company said it “recently learned of suspicious activity” within its environment that it believes “was tied to a sophisticated nation state actor, which affected a very small number of ScreenConnect customers.”
Source: The Record
May 29th, 2025 (12 days ago)
A new author has appeared
Description: Talos Content Manager Amy introduces themself, shares her unconventional journey into cybersecurity and reports on threats masquerading as AI installers.
Source: Cisco Talos Blog
May 29th, 2025 (12 days ago)