CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2024-43459	SQL Server Native Client Remote Code Execution Vulnerability Description: SQL Server Native Client Remote Code Execution Vulnerability CVSS: HIGH (8.8) EPSS Score: 0.15% Source: CVE November 27th, 2024 (7 months ago)
CVE-2024-43451	NTLM Hash Disclosure Spoofing Vulnerability Description: NTLM Hash Disclosure Spoofing Vulnerability CVSS: MEDIUM (6.5) EPSS Score: 1.33% Source: CVE November 27th, 2024 (7 months ago)
CVE-2024-43450	Windows DNS Spoofing Vulnerability Description: Windows DNS Spoofing Vulnerability CVSS: HIGH (7.5) EPSS Score: 0.13% Source: CVE November 27th, 2024 (7 months ago)
CVE-2024-43449	Windows USB Video Class System Driver Elevation of Privilege Vulnerability Description: Windows USB Video Class System Driver Elevation of Privilege Vulnerability CVSS: MEDIUM (6.8) EPSS Score: 0.05% Source: CVE November 27th, 2024 (7 months ago)
CVE-2024-43447	Windows SMBv3 Server Remote Code Execution Vulnerability Description: Windows SMBv3 Server Remote Code Execution Vulnerability CVSS: HIGH (8.1) EPSS Score: 0.16% Source: CVE November 27th, 2024 (7 months ago)
	Microsoft Finally Releases Recall as Part of Windows Insider Preview Description: The preview version now includes multiple security-focused additions Microsoft had promised to add, such as SecureBoot, BitLocker, and Windows Hello. Source: Dark Reading November 27th, 2024 (7 months ago)
	RomCom Exploits Zero-Day Firefox and Windows Flaws in Sophisticated Cyberattacks Description: The Russia-aligned threat actor known as RomCom has been linked to the zero-day exploitation of two security flaws, one in Mozilla Firefox and the other in Microsoft Windows, as part of attacks designed to deliver the eponymous backdoor on victim systems. "In a successful attack, if a victim browses a web page containing the exploit, an adversary can run arbitrary code – without any user Source: TheHackerNews November 27th, 2024 (7 months ago)
CVE-2024-49060	Azure Stack HCI Elevation of Privilege Vulnerability Description: Azure Stack HCI Elevation of Privilege Vulnerability CVSS: HIGH (8.8) EPSS Score: 0.05% Source: CVE November 27th, 2024 (7 months ago)
CVE-2024-49056	Airlift.microsoft.com Elevation of Privilege Vulnerability Description: Authentication bypass by assumed-immutable data on airlift.microsoft.com allows an authorized attacker to elevate privileges over a network. CVSS: HIGH (7.3) EPSS Score: 0.07% Source: CVE November 27th, 2024 (7 months ago)
CVE-2024-49054	Microsoft Edge (Chromium-based) Spoofing Vulnerability Description: Microsoft Edge (Chromium-based) Spoofing Vulnerability CVSS: MEDIUM (4.3) EPSS Score: 0.05% Source: CVE November 27th, 2024 (7 months ago)