CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2025-5474
2BrightSparks SyncBackFree Link Following Local Privilege Escalation Vulnerability
Description: 2BrightSparks SyncBackFree Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of 2BrightSparks SyncBackFree. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. User interaction on the part of an administrator is also required. The specific flaw exists within the Mirror functionality. By creating a junction, an attacker can abuse the service to delete arbitrary files. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. Was ZDI-CAN-26962.

CVSS: HIGH (7.3)

EPSS Score: 0.02%

Source: CVE
June 6th, 2025 (28 days ago)

CVE-2025-5473
GIMP ICO File Parsing Integer Overflow Remote Code Execution Vulnerability
Description: GIMP ICO File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of ICO files. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow before writing to memory. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-26752.

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
June 6th, 2025 (28 days ago)

CVE-2025-3485
Allegra extractFileFromZip Directory Traversal Remote Code Execution Vulnerability
Description: Allegra extractFileFromZip Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Allegra. Authentication is required to exploit this vulnerability. The specific flaw exists within the implementation of the extractFileFromZip method. The issue results from the lack of proper validation of a user-supplied path prior to using it in file operations. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-26524.

CVSS: HIGH (7.2)

EPSS Score: 4.13%

Source: CVE
June 6th, 2025 (28 days ago)

CVE-2025-2766
70mai A510 Use of Default Password Authentication Bypass Vulnerability
Description: 70mai A510 Use of Default Password Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of 70mai A510. Authentication is not required to exploit this vulnerability. The specific flaw exists within the default configuration of user accounts. The configuration contains default password. An attacker can leverage this vulnerability to bypass authentication and execute arbitrary code in the context of the root. Was ZDI-CAN-24996.

CVSS: HIGH (8.8)

EPSS Score: 0.03%

Source: CVE
June 6th, 2025 (28 days ago)
🏴‍☠️ Lynx has just published a new victim : Best Profil
Description: Après 20 ans d’expertises dans le domaine des ressources humaines, la synergie entre l'ensemble de nos activités (Intérim Cdd Cdi, Recrutement, Formation) est maintenant totale. Nous sommes donc fiers de vous annoncer que nous avons réuni toutes nos activités sous l'enseigne BEST PROFIL. Ce tournant stratégique nous permet de nous adapter aux exigences d'un marché en continuel évolution. Nous avons accompagné ce regroupement par un changement d'identité visuel qui véhiculera nos valeurs et nos promesses. . Au delà d’une signature « l’homme au cœur de nos métiers » est une préoccupation journalière et s’exprime dans les valeurs que nous portons : Proximité : le suivi au quotidien de nos collaborateurs et de nos clients est l’atout majeur de Best Profil.
Source: Ransomware.live
June 6th, 2025 (28 days ago)
🏴‍☠️ Lynx has just published a new victim : lgipr
Description: Luis Garratón, LLC is a full-service distributor specializing in pharmaceuticals, consumer goods, and logistics services. The company focuses on meeting the needs of clients in the distribution and marketing sectors with four main service categories: healthcare, consumer products, logistic services, and digital marketing. They pride themselves on delivering durable results, a dedicated sales force, award-winning services, and a high level of professionalism. With a commitment to excellence, Luis Garratón, LLC aims to help businesses achieve their commercial goals.
Source: Ransomware.live
June 6th, 2025 (28 days ago)
🏴‍☠️ Lynx has just published a new victim : quenotedeporten
Description: Law Office Of Omar O Vargas is a company that operates in the Law Firms & Legal Services industry. It employs 5to9 people and has 500Kto1M of revenue. The company is headquartered in Houston, Texas.
Source: Ransomware.live
June 6th, 2025 (28 days ago)
🏴‍☠️ Nightspire has just published a new victim : QuadMiners
Description: QuadMiners (South Korea)
Source: Ransomware.live
June 6th, 2025 (28 days ago)
🏴‍☠️ Nightspire has just published a new victim : The Green Flame Gas Co.
Description: The Green Flame Gas Co. (Kuwait)
Source: Ransomware.live
June 6th, 2025 (28 days ago)
🏴‍☠️ Nightspire has just published a new victim : Ingonyama Trust Board
Description: Ingonyama Trust Board (South Africa)
Source: Ransomware.live
June 6th, 2025 (28 days ago)