CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-56950 |
Description: An issue in KuGou Technology Co., Ltd KuGou Concept iOS 4.0.61 allows attackers to access sensitive user information via supplying a crafted link.
EPSS Score: 0.06%
January 28th, 2025 (6 months ago)
|
|
CVE-2024-56949 |
Description: An issue in Guangzhou Polar Future Culture Technology Co., Ltd University Search iOS 2.27.0 allows attackers to access sensitive user information via supplying a crafted link.
EPSS Score: 0.06%
January 28th, 2025 (6 months ago)
|
|
CVE-2024-56948 |
Description: An issue in KuGou Technology CO. LTD KuGou Music iOS v20.0.0 allows attackers to access sensitive user information via supplying a crafted link.
EPSS Score: 0.06%
January 28th, 2025 (6 months ago)
|
|
CVE-2024-56947 |
Description: An issue in Xiamen Meitu Technology Co., Ltd. BeautyCam iOS v12.3.60 allows attackers to access sensitive user information via supplying a crafted link.
EPSS Score: 0.06%
January 28th, 2025 (6 months ago)
|
|
CVE-2024-56316 |
Description: In AXESS ACS (Auto Configuration Server) through 5.2.0, unsanitized user input in the TR069 API allows remote unauthenticated attackers to cause a permanent Denial of Service via crafted TR069 requests on TCP port 9675 or 7547. Rebooting does not resolve the permanent Denial of Service.
EPSS Score: 0.04%
January 28th, 2025 (6 months ago)
|
|
CVE-2024-56178 |
Description: An issue was discovered in Couchbase Server 7.6.x through 7.6.3. A user with the security_admin_local role can create a new user in a group that has the admin role.
EPSS Score: 0.04%
January 28th, 2025 (6 months ago)
|
|
CVE-2024-56012 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Pearlbells Flash News / Post (Responsive), Pearlbells Post Title (TypeWriter) allows Privilege Escalation.This issue affects Flash News / Post (Responsive): from n/a through 4.1; Post Title (TypeWriter): from n/a through 4.1.
CVSS: CRITICAL (9.8) EPSS Score: 0.04%
January 28th, 2025 (6 months ago)
|
|
CVE-2024-55931 |
Description: Xerox Workplace Suite stores tokens in session storage, which may expose them to potential access if a user's session is compromised.
The patch for this vulnerability will be included in a future release of Workplace Suite, and customers will be notified through an update to the security bulletin.
CVSS: MEDIUM (6.3) EPSS Score: 0.04%
January 28th, 2025 (6 months ago)
|
|
CVE-2024-55930 |
Description: Xerox Workplace Suite has weak default folder permissions that allow unauthorized users to access, modify, or delete files
CVSS: MEDIUM (6.6) EPSS Score: 0.04%
January 28th, 2025 (6 months ago)
|
|
CVE-2024-55929 |
Description: A mail spoofing vulnerability in Xerox Workplace Suite allows attackers to forge email headers, making it appear as though messages are sent from trusted sources.
CVSS: MEDIUM (5.0) EPSS Score: 0.04%
January 28th, 2025 (6 months ago)
|