Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
Phishing Campaigns Use Real-Time Checks to Validate Victim Emails Before Credential Theft
Description: Cybersecurity researchers are calling attention to a new type of credential phishing scheme that ensures that the stolen information is associated with valid online accounts. The technique has been codenamed precision-validating phishing by Cofense, which it said employs real-time email validation so that only a select set of high-value targets are served the fake login screens. "This tactic not
Source: TheHackerNews
April 14th, 2025 (9 days ago)

CVE-2025-32913
Libsoup: null pointer dereference in soup_message_headers_get_content_disposition when "filename" parameter is present, but has no value in conte...
Description: A flaw was found in libsoup, where the soup_message_headers_get_content_disposition() function is vulnerable to a NULL pointer dereference. This flaw allows a malicious HTTP peer to crash a libsoup client or server that uses this function.

EPSS Score: 0.05%

SSVC Exploitation: none

Source: CVE
April 14th, 2025 (9 days ago)

CVE-2025-32908
Libsoup: denial of service on libsoup through http/2 server
Description: A flaw was found in libsoup. The HTTP/2 server in libsoup may not fully validate the values of pseudo-headers :scheme, :authority, and :path, which may allow a user to cause a denial of service (DoS).

EPSS Score: 0.05%

Source: CVE
April 14th, 2025 (9 days ago)

CVE-2025-32907
Libsoup: denial of service in server when client requests a large amount of overlapping ranges with range header
Description: A flaw was found in libsoup. The implementation of HTTP range requests is vulnerable to a resource consumption attack. This flaw allows a malicious client to request the same range many times in a single HTTP request, causing the server to use large amounts of memory.

EPSS Score: 0.05%

Source: CVE
April 14th, 2025 (9 days ago)

CVE-2025-32906
Libsoup: out of bounds reads in soup_headers_parse_request()
Description: A flaw was found in libsoup, where the soup_headers_parse_request() function may be vulnerable to an out-of-bound read. This flaw allows a malicious user to use a specially crafted HTTP request to crash the HTTP server.

EPSS Score: 0.69%

Source: CVE
April 14th, 2025 (9 days ago)
Enhancing your DevSecOps with Wazuh, the open source XDR platform
Description: Security shouldn't wait until the end of development. Wazuh brings real-time threat detection, compliance, and vulnerability scanning into your DevOps pipeline—powering a stronger DevSecOps strategy from day one. Learn more about how Wazuh can help secure your development cycle. [...]
Source: BleepingComputer
April 14th, 2025 (9 days ago)
Kidney dialysis firm DaVita hit by weekend ransomware attack
Description: Kidney dialysis firm DaVita disclosed Monday it suffered a weekend ransomware attack that encrypted parts of its network and impacted some of its operations. [...]
Source: BleepingComputer
April 14th, 2025 (9 days ago)
[hardware] ZTE ZXHN H168N 3.1 - Remote Code Execution (RCE) via authentication bypass
Description: ZTE ZXHN H168N 3.1 - Remote Code Execution (RCE) via authentication bypass
Source: ExploitDB
April 14th, 2025 (9 days ago)
[webapps] Xinet Elegant 6 Asset Lib Web UI 6.1.655 - SQL Injection
Description: Xinet Elegant 6 Asset Lib Web UI 6.1.655 - SQL Injection
Source: ExploitDB
April 14th, 2025 (9 days ago)
[webapps] Pimcore customer-data-framework 4.2.0 - SQL injection
Description: Pimcore customer-data-framework 4.2.0 - SQL injection
Source: ExploitDB
April 14th, 2025 (9 days ago)