Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2024-20658
Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability
Description: Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
January 1st, 2025 (4 months ago)

CVE-2024-20657
Windows Group Policy Elevation of Privilege Vulnerability
Description: Windows Group Policy Elevation of Privilege Vulnerability

CVSS: HIGH (7.0)

EPSS Score: 0.05%

Source: CVE
January 1st, 2025 (4 months ago)

CVE-2024-20656
Visual Studio Elevation of Privilege Vulnerability
Description: Visual Studio Elevation of Privilege Vulnerability

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
January 1st, 2025 (4 months ago)

CVE-2024-20655
Microsoft Online Certificate Status Protocol (OCSP) Remote Code Execution Vulnerability
Description: Microsoft Online Certificate Status Protocol (OCSP) Remote Code Execution Vulnerability

CVSS: MEDIUM (6.6)

EPSS Score: 0.25%

Source: CVE
January 1st, 2025 (4 months ago)

CVE-2024-20654
Microsoft ODBC Driver Remote Code Execution Vulnerability
Description: Microsoft ODBC Driver Remote Code Execution Vulnerability

CVSS: HIGH (8.0)

EPSS Score: 0.25%

Source: CVE
January 1st, 2025 (4 months ago)

CVE-2024-20653
Microsoft Common Log File System Elevation of Privilege Vulnerability
Description: Microsoft Common Log File System Elevation of Privilege Vulnerability

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
January 1st, 2025 (4 months ago)

CVE-2024-20652
Windows HTML Platforms Security Feature Bypass Vulnerability
Description: Windows HTML Platforms Security Feature Bypass Vulnerability

CVSS: HIGH (8.1)

EPSS Score: 0.05%

Source: CVE
January 1st, 2025 (4 months ago)

CVE-2024-0057
NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability
Description: NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability

CVSS: CRITICAL (9.1)

EPSS Score: 0.15%

Source: CVE
January 1st, 2025 (4 months ago)

CVE-2024-0056
Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability
Description: Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability

CVSS: HIGH (8.7)

EPSS Score: 0.05%

Source: CVE
January 1st, 2025 (4 months ago)
Misconfigured Kubernetes RBAC in Azure Airflow Could Expose Entire Cluster to Exploitation
Description: Cybersecurity researchers have uncovered three security weaknesses in Microsoft's Azure Data Factory Apache Airflow integration that, if successfully exploited, could have allowed an attacker to gain the ability to conduct various covert actions, including data exfiltration and malware deployment. "Exploiting these flaws could allow attackers to gain persistent access as shadow administrators
Source: TheHackerNews
December 31st, 2024 (4 months ago)