CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE-2024-45653

Description: IBM Sterling Connect:Direct Web Services 6.0, 6.1, 6.2, and 6.3 could disclose sensitive IP address information to authenticated users in responses that could be used in further attacks against the system.

CVSS: MEDIUM (4.3)

EPSS Score: 0.05%

Source: CVE
January 20th, 2025 (6 months ago)

CVE-2024-45652

Description: IBM Maximo MXAPIASSET API 7.6.1.3 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system.

CVSS: MEDIUM (6.5)

EPSS Score: 0.05%

Source: CVE
January 20th, 2025 (6 months ago)

CVE-2024-41783

Description: IBM Sterling Secure Proxy 6.0.0.0, 6.0.0.1, 6.0.0.2, 6.0.0.3, 6.1.0.0, and 6.2.0.0 could allow a privileged user to inject commands into the underlying operating system due to improper validation of a specified type of input.

CVSS: CRITICAL (9.1)

EPSS Score: 0.05%

Source: CVE
January 20th, 2025 (6 months ago)

CVE-2024-41743

Description: IBM TXSeries for Multiplatforms 10.1 could allow a remote attacker to cause a denial of service using persistent connections due to improper allocation of resources.

CVSS: HIGH (7.5)

EPSS Score: 0.05%

Source: CVE
January 20th, 2025 (6 months ago)

CVE-2024-41742

Description: IBM TXSeries for Multiplatforms 10.1 is vulnerable to a denial of service, caused by improper enforcement of the timeout on individual read operations. By conducting a slowloris-type attacks, a remote attacker could exploit this vulnerability to cause a denial of service.

CVSS: HIGH (7.5)

EPSS Score: 0.05%

Source: CVE
January 20th, 2025 (6 months ago)

CVE-2024-38337

Description: IBM Sterling Secure Proxy 6.0.0.0, 6.0.0.1, 6.0.0.2, 6.0.0.3, 6.1.0.0, and 6.2.0.0 could allow an unauthorized attacker to retrieve or alter sensitive information contents due to incorrect permission assignments.

CVSS: CRITICAL (9.1)

EPSS Score: 0.09%

Source: CVE
January 20th, 2025 (6 months ago)
Description: A Threat Actor Claims to be Selling Data of Carrefour
Source: DarkWebInformer
January 19th, 2025 (6 months ago)
Description: TikTok is back up in the United States after Trump announced today that he would extend a 90-day deadline for the company to find a U.S. purchaser. [...]
Source: BleepingComputer
January 19th, 2025 (6 months ago)
Source: TheRegister
January 19th, 2025 (6 months ago)
Description: A Threat Actor Claims to be Selling Spanish Bank Leads
Source: DarkWebInformer
January 19th, 2025 (6 months ago)