Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2024-30091
Win32k Elevation of Privilege Vulnerability
Description: Win32k Elevation of Privilege Vulnerability

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
December 28th, 2024 (4 months ago)

CVE-2024-30087
Win32k Elevation of Privilege Vulnerability
Description: Win32k Elevation of Privilege Vulnerability

CVSS: HIGH (7.8)

EPSS Score: 0.06%

Source: CVE
December 28th, 2024 (4 months ago)

CVE-2024-30082
Win32k Elevation of Privilege Vulnerability
Description: Win32k Elevation of Privilege Vulnerability

CVSS: HIGH (7.8)

EPSS Score: 0.06%

Source: CVE
December 28th, 2024 (4 months ago)

CVE-2024-30077
Windows OLE Remote Code Execution Vulnerability
Description: Windows OLE Remote Code Execution Vulnerability

CVSS: HIGH (8.0)

EPSS Score: 0.05%

Source: CVE
December 28th, 2024 (4 months ago)
Quantum Computing Advances in 2024 Put Security In Spotlight
Description: The work on quantum computing hit some major milestones in 2024, making the path to a workable quantum computer seem closer than ever. Google, Microsoft, and other research efforts hit significant milestones this year, but is the cybersecurity world ready?
Source: Dark Reading
December 27th, 2024 (4 months ago)
Windows 11 installation media bug causes security update failures
Description: Microsoft is warning of an issue when using a media support to install Windows 11, version 24H2, that causes the operating system to not accept further security updates. [...]
Source: BleepingComputer
December 26th, 2024 (4 months ago)
New FlowerStorm Microsoft phishing service fills void left by Rockstar2FA
Description: A new Microsoft 365 phishing-as-a-service platform called "FlowerStorm" is growing in popularity, filling the void left behind by the sudden shutdown of the Rockstar2FA cybercrime service. [...]
Source: BleepingComputer
December 23rd, 2024 (4 months ago)
Microsoft fixes bug behind random Office 365 deactivation errors
Description: ​Microsoft has rolled out a fix for a known issue that causes random "Product Deactivated" errors for customers using Microsoft 365 Office apps. [...]
Source: BleepingComputer
December 23rd, 2024 (4 months ago)

CVE-2024-43594
Microsoft System Center Elevation of Privilege Vulnerability
Description: Microsoft System Center Elevation of Privilege Vulnerability

CVSS: HIGH (7.3)

EPSS Score: 0.05%

Source: CVE
December 21st, 2024 (4 months ago)

CVE-2024-41165
A library injection vulnerability exists in Microsoft Word 16.83 for macOS. A specially crafted library can leverage Word's access privileges,...
Description: A library injection vulnerability exists in Microsoft Word 16.83 for macOS. A specially crafted library can leverage Word's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.

CVSS: HIGH (7.1)

EPSS Score: 0.04%

Source: CVE
December 21st, 2024 (4 months ago)