CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
US Soldier Intends to Admit Hacking 15 Telecom Carriers
Description: The federal government views the defendant as a flight risk and danger to the community due to his ability to access sensitive and private information.
Source: Dark Reading
February 28th, 2025 (4 months ago)
Microsoft Busts Hackers Selling Illegal Azure AI Access
Description: LLMjacking operation leveraged illicit access GenAI services to produce explicit celebrity images and other harmful content, Microsoft's digital crimes unit says.
Source: Dark Reading
February 28th, 2025 (4 months ago)
A Threat Actor Claims to have Leaked the Data of Division Production Ingénierie Hydraulique (France)
Description: A Threat Actor Claims to have Leaked the Data of Division Production Ingénierie Hydraulique (France)
Source: DarkWebInformer
February 28th, 2025 (4 months ago)

CVE-2025-25635
TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the...
Description: TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the pppoe_dns1 parameter in the formIpv6Setup interface of /bin/boa.

EPSS Score: 0.03%

Source: CVE
February 28th, 2025 (4 months ago)

CVE-2025-25610
TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the...
Description: TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the static_gw parameter in the formIpv6Setup interface of /bin/boa.

EPSS Score: 0.03%

Source: CVE
February 28th, 2025 (4 months ago)

CVE-2025-25609
TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the...
Description: TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the static_ipv6 parameter in the formIpv6Setup interface of /bin/boa

EPSS Score: 0.03%

Source: CVE
February 28th, 2025 (4 months ago)

CVE-2025-25431
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the The ssid key of wifi_data parameter on the...
Description: Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the The ssid key of wifi_data parameter on the /captive_portal.htm page.

EPSS Score: 0.03%

Source: CVE
February 28th, 2025 (4 months ago)

CVE-2025-25430
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the configname parameter on the /cbi_addcert.htm page.
Description: Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the configname parameter on the /cbi_addcert.htm page.

EPSS Score: 0.03%

Source: CVE
February 28th, 2025 (4 months ago)

CVE-2025-25429
Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the r_name variable inside the have_same_name function...
Description: Trendnet TEW-929DRU 1.0.0.10 contains a Stored Cross-site Scripting (XSS) vulnerability via the r_name variable inside the have_same_name function on the /addschedule.htm page.

EPSS Score: 0.03%

Source: CVE
February 28th, 2025 (4 months ago)

CVE-2025-25428
TRENDnet TEW-929DRU 1.0.0.10 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root.
Description: TRENDnet TEW-929DRU 1.0.0.10 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to log in as root.

EPSS Score: 0.02%

Source: CVE
February 28th, 2025 (4 months ago)