Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2024-43449
Windows USB Video Class System Driver Elevation of Privilege Vulnerability
Description: Windows USB Video Class System Driver Elevation of Privilege Vulnerability

CVSS: MEDIUM (6.8)

EPSS Score: 0.05%

Source: CVE
November 27th, 2024 (5 months ago)

CVE-2024-43447
Windows SMBv3 Server Remote Code Execution Vulnerability
Description: Windows SMBv3 Server Remote Code Execution Vulnerability

CVSS: HIGH (8.1)

EPSS Score: 0.16%

Source: CVE
November 27th, 2024 (5 months ago)
Microsoft Finally Releases Recall as Part of Windows Insider Preview
Description: The preview version now includes multiple security-focused additions Microsoft had promised to add, such as SecureBoot, BitLocker, and Windows Hello.
Source: Dark Reading
November 27th, 2024 (5 months ago)
RomCom Exploits Zero-Day Firefox and Windows Flaws in Sophisticated Cyberattacks
Description: The Russia-aligned threat actor known as RomCom has been linked to the zero-day exploitation of two security flaws, one in Mozilla Firefox and the other in Microsoft Windows, as part of attacks designed to deliver the eponymous backdoor on victim systems. "In a successful attack, if a victim browses a web page containing the exploit, an adversary can run arbitrary code – without any user
Source: TheHackerNews
November 27th, 2024 (5 months ago)

CVE-2024-49060
Azure Stack HCI Elevation of Privilege Vulnerability
Description: Azure Stack HCI Elevation of Privilege Vulnerability

CVSS: HIGH (8.8)

EPSS Score: 0.05%

Source: CVE
November 27th, 2024 (5 months ago)

CVE-2024-49056
Airlift.microsoft.com Elevation of Privilege Vulnerability
Description: Authentication bypass by assumed-immutable data on airlift.microsoft.com allows an authorized attacker to elevate privileges over a network.

CVSS: HIGH (7.3)

EPSS Score: 0.07%

Source: CVE
November 27th, 2024 (5 months ago)

CVE-2024-49054
Microsoft Edge (Chromium-based) Spoofing Vulnerability
Description: Microsoft Edge (Chromium-based) Spoofing Vulnerability

CVSS: MEDIUM (4.3)

EPSS Score: 0.05%

Source: CVE
November 27th, 2024 (5 months ago)

CVE-2024-49053
Microsoft Dynamics 365 Sales Spoofing Vulnerability
Description: Microsoft Dynamics 365 Sales Spoofing Vulnerability

CVSS: HIGH (7.6)

EPSS Score: 0.05%

Source: CVE
November 27th, 2024 (5 months ago)

CVE-2024-49052
Microsoft Azure PolicyWatch Elevation of Privilege Vulnerability
Description: Missing authentication for critical function in Microsoft Azure PolicyWatch allows an unauthorized attacker to elevate privileges over a network.

CVSS: HIGH (8.2)

EPSS Score: 0.09%

Source: CVE
November 27th, 2024 (5 months ago)

CVE-2024-49051
Microsoft PC Manager Elevation of Privilege Vulnerability
Description: Microsoft PC Manager Elevation of Privilege Vulnerability

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
November 27th, 2024 (5 months ago)