CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2025-20888 |
Description: Out-of-bounds write in handling the block size for smp4vtd in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.
CVSS: HIGH (7.0) EPSS Score: 0.05%
February 5th, 2025 (5 months ago)
|
|
CVE-2025-20887 |
Description: Out-of-bounds read in accessing table used for svp8t in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to read arbitrary memory. User interaction is required for triggering this vulnerability.
CVSS: MEDIUM (5.3) EPSS Score: 0.05%
February 5th, 2025 (5 months ago)
|
|
CVE-2025-20886 |
Description: Inclusion of sensitive information in test code in softsim TA prior to SMR Jan-2025 Release 1 allows local privileged attackers to get test key.
CVSS: MEDIUM (4.1) EPSS Score: 0.04%
February 5th, 2025 (5 months ago)
|
|
CVE-2025-20885 |
Description: Out-of-bounds write in softsim TA prior to SMR Jan-2025 Release 1 allows local privileged attackers to cause memory corruption.
CVSS: MEDIUM (6.4) EPSS Score: 0.04%
February 5th, 2025 (5 months ago)
|
|
CVE-2025-20884 |
Description: Improper access control in Samsung Message prior to SMR Jan-2025 Release 1 allows physical attackers to access data across multiple user profiles.
CVSS: MEDIUM (4.6) EPSS Score: 0.05%
February 5th, 2025 (5 months ago)
|
|
CVE-2025-20883 |
Description: Improper access control in SoundPicker prior to SMR Jan-2025 Release 1 allows physical attackers to access data across multiple user profiles.
CVSS: MEDIUM (4.6) EPSS Score: 0.05%
February 5th, 2025 (5 months ago)
|
|
CVE-2025-20882 |
Description: Out-of-bounds write in accessing uninitialized memory for svc1td in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.
CVSS: HIGH (7.0) EPSS Score: 0.05%
February 5th, 2025 (5 months ago)
|
|
CVE-2025-20881 |
Description: Out-of-bounds write in accessing buffer storing the decoded video frames in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability.
CVSS: HIGH (7.0) EPSS Score: 0.05%
February 5th, 2025 (5 months ago)
|
|
CVE-2025-1020 |
Description: Memory safety bugs present in Firefox 134 and Thunderbird 134. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 135 and Thunderbird < 135.
EPSS Score: 0.07%
February 5th, 2025 (5 months ago)
|
|
CVE-2025-1019 |
Description: The z-order of the browser windows could be manipulated to hide the fullscreen notification. This could potentially be leveraged to perform a spoofing attack. This vulnerability affects Firefox < 135 and Thunderbird < 135.
EPSS Score: 0.05%
February 5th, 2025 (5 months ago)
|