Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2024-38190	Power Platform Information Disclosure Vulnerability Description: Missing authorization in Power Platform allows an unauthenticated attacker to view sensitive information through a network attack vector. CVSS: HIGH (8.6) EPSS Score: 0.3% Source: CVE December 11th, 2024 (4 months ago)
CVE-2024-38182	Microsoft Dynamics 365 Elevation of Privilege Vulnerability Description: Weak authentication in Microsoft Dynamics 365 allows an unauthenticated attacker to elevate privileges over a network. CVSS: CRITICAL (9.0) EPSS Score: 0.13% Source: CVE December 11th, 2024 (4 months ago)
CVE-2024-38179	Azure Stack Hyperconverged Infrastructure (HCI) Elevation of Privilege Vulnerability Description: Azure Stack Hyperconverged Infrastructure (HCI) Elevation of Privilege Vulnerability CVSS: HIGH (8.8) EPSS Score: 0.05% Source: CVE December 11th, 2024 (4 months ago)
CVE-2024-38176	GroupMe Elevation of Privilege Vulnerability Description: An improper restriction of excessive authentication attempts in GroupMe allows a unauthenticated attacker to elevate privileges over a network. CVSS: HIGH (8.1) EPSS Score: 0.34% Source: CVE December 11th, 2024 (4 months ago)
CVE-2024-38164	GroupMe Elevation of Privilege Vulnerability Description: An improper access control vulnerability in GroupMe allows an a unauthenticated attacker to elevate privileges over a network by convincing a user to click on a malicious link. CVSS: CRITICAL (9.6) EPSS Score: 0.28% Source: CVE December 11th, 2024 (4 months ago)
CVE-2024-38156	Microsoft Edge (Chromium-based) Spoofing Vulnerability Description: Microsoft Edge (Chromium-based) Spoofing Vulnerability CVSS: MEDIUM (6.1) EPSS Score: 0.05% Source: CVE December 11th, 2024 (4 months ago)
CVE-2024-38149	BranchCache Denial of Service Vulnerability Description: BranchCache Denial of Service Vulnerability CVSS: HIGH (7.5) EPSS Score: 0.09% Source: CVE December 11th, 2024 (4 months ago)
CVE-2024-38139	Microsoft Dataverse Elevation of Privilege Vulnerability Description: Improper authentication in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network. CVSS: HIGH (8.7) EPSS Score: 0.05% Source: CVE December 11th, 2024 (4 months ago)
CVE-2024-38129	Windows Kerberos Elevation of Privilege Vulnerability Description: Windows Kerberos Elevation of Privilege Vulnerability CVSS: HIGH (7.5) EPSS Score: 0.05% Source: CVE December 11th, 2024 (4 months ago)
CVE-2024-38124	Windows Netlogon Elevation of Privilege Vulnerability Description: Windows Netlogon Elevation of Privilege Vulnerability CVSS: CRITICAL (9.0) EPSS Score: 0.11% Source: CVE December 11th, 2024 (4 months ago)