Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-49142 |
Description: Microsoft Access Remote Code Execution Vulnerability
CVSS: HIGH (7.8) EPSS Score: 0.05%
December 19th, 2024 (6 months ago)
|
|
CVE-2024-49129 |
Description: Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability
CVSS: HIGH (7.5) EPSS Score: 0.05%
December 19th, 2024 (6 months ago)
|
|
CVE-2024-43106 |
Description: A library injection vulnerability exists in Microsoft Excel 16.83 for macOS. A specially crafted library can leverage Excel's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 19th, 2024 (6 months ago)
|
|
CVE-2024-42220 |
Description: A library injection vulnerability exists in Microsoft Outlook 16.83.3 for macOS. A specially crafted library can leverage Outlook's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 19th, 2024 (6 months ago)
|
|
CVE-2024-42004 |
Description: A library injection vulnerability exists in Microsoft Teams (work or school) 24046.2813.2770.1094 for macOS. A specially crafted library can leverage Teams's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 19th, 2024 (6 months ago)
|
|
CVE-2024-41145 |
Description: A library injection vulnerability exists in the WebView.app helper app of Microsoft Teams (work or school) 24046.2813.2770.1094 for macOS. A specially crafted library can leverage Teams's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 19th, 2024 (6 months ago)
|
|
CVE-2024-41138 |
Description: A library injection vulnerability exists in the com.microsoft.teams2.modulehost.app helper app of Microsoft Teams (work or school) 24046.2813.2770.1094 for macOS. A specially crafted library can leverage Teams's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 19th, 2024 (6 months ago)
|
|
CVE-2024-39804 |
Description: A library injection vulnerability exists in Microsoft PowerPoint 16.83 for macOS. A specially crafted library can leverage PowerPoint's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 19th, 2024 (6 months ago)
|
|
Description: A phishing campaign targeting automotive, chemical, and industrial manufacturing companies in Germany and the UK is abusing HubSpot to steal Microsoft Azure account credentials. [...]
December 18th, 2024 (6 months ago)
|
|
|
Description: Malicious Visual Studio Code extensions were discovered on the VSCode marketplace that download heavily obfuscated PowerShell payloads to target developers and cryptocurrency projects in supply chain attacks. [...]
December 18th, 2024 (6 months ago)
|