CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

Example Searches:

CVE-2025-29836	Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability Description: Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network. CVSS: MEDIUM (6.5) EPSS Score: 0.06% Source: CVE May 13th, 2025 (about 1 month ago)
CVE-2025-29835	Windows Remote Access Connection Manager Information Disclosure Vulnerability Description: Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network. CVSS: MEDIUM (6.5) EPSS Score: 0.07% Source: CVE May 13th, 2025 (about 1 month ago)
CVE-2025-29833	Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability Description: Time-of-check time-of-use (toctou) race condition in Windows Virtual Machine Bus allows an authorized attacker to execute code over a network. CVSS: HIGH (7.7) EPSS Score: 0.04% Source: CVE May 13th, 2025 (about 1 month ago)
CVE-2025-29832	Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability Description: Out-of-bounds read in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network. CVSS: MEDIUM (6.5) EPSS Score: 0.06% Source: CVE May 13th, 2025 (about 1 month ago)
CVE-2025-29831	Windows Remote Desktop Services Remote Code Execution Vulnerability Description: Use after free in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network. CVSS: HIGH (7.5) EPSS Score: 0.09% Source: CVE May 13th, 2025 (about 1 month ago)
CVE-2025-29830	Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability Description: Use of uninitialized resource in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to disclose information over a network. CVSS: MEDIUM (6.5) EPSS Score: 0.17% Source: CVE May 13th, 2025 (about 1 month ago)
CVE-2025-29829	Windows Trusted Runtime Interface Driver Information Disclosure Vulnerability Description: Use of uninitialized resource in Windows Trusted Runtime Interface Driver allows an authorized attacker to disclose information locally. CVSS: MEDIUM (5.5) EPSS Score: 0.11% Source: CVE May 13th, 2025 (about 1 month ago)
CVE-2025-29826	Microsoft Dataverse Elevation of Privilege Vulnerability Description: Improper handling of insufficient permissions or privileges in Microsoft Dataverse allows an authorized attacker to elevate privileges over a network. CVSS: HIGH (7.3) EPSS Score: 0.05% Source: CVE May 13th, 2025 (about 1 month ago)
CVE-2025-27488	Microsoft Windows Hardware Lab Kit (HLK) Elevation of Privilege Vulnerability Description: Use of hard-coded credentials in Windows Hardware Lab Kit allows an authorized attacker to elevate privileges locally. CVSS: MEDIUM (6.7) EPSS Score: 0.06% Source: CVE May 13th, 2025 (about 1 month ago)
CVE-2025-27468	Windows Kernel-Mode Driver Elevation of Privilege Vulnerability Description: Improper privilege management in Windows Secure Kernel Mode allows an authorized attacker to elevate privileges locally. CVSS: HIGH (7.0) EPSS Score: 0.04% Source: CVE May 13th, 2025 (about 1 month ago)