Threat and Vulnerability Intelligence Database

RSS Feed

Example Searches:

CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited

CVE-2024-49069
Microsoft Excel Remote Code Execution Vulnerability
Description: Microsoft Excel Remote Code Execution Vulnerability

CVSS: HIGH (7.8)

EPSS Score: 0.05%

Source: CVE
January 9th, 2025 (3 months ago)

CVE-2024-49068
Microsoft SharePoint Elevation of Privilege Vulnerability
Description: Microsoft SharePoint Elevation of Privilege Vulnerability

CVSS: HIGH (8.2)

EPSS Score: 0.1%

Source: CVE
January 9th, 2025 (3 months ago)

CVE-2024-49065
Microsoft Office Remote Code Execution Vulnerability
Description: Microsoft Office Remote Code Execution Vulnerability

CVSS: MEDIUM (5.5)

EPSS Score: 0.06%

Source: CVE
January 9th, 2025 (3 months ago)

CVE-2024-49064
Microsoft SharePoint Information Disclosure Vulnerability
Description: Microsoft SharePoint Information Disclosure Vulnerability

CVSS: MEDIUM (6.5)

EPSS Score: 0.09%

Source: CVE
January 9th, 2025 (3 months ago)

CVE-2024-49063
Microsoft/Muzic Remote Code Execution Vulnerability
Description: Microsoft/Muzic Remote Code Execution Vulnerability

CVSS: HIGH (8.4)

EPSS Score: 0.05%

Source: CVE
January 9th, 2025 (3 months ago)
Unconventional Cyberattacks Aim to Take Over PayPal Accounts
Description: Attackers are abusing a Microsoft 365 feature to send payment requests to users, tricking them into logging in to their accounts so attackers can seize control over them.
Source: Dark Reading
January 8th, 2025 (3 months ago)

CVE-2024-55414
A vulnerability exits in driver SmSerl64.sys in Motorola SM56 Modem WDM Driver v6.12.23.0, which allows low-privileged users to mapping physical...
Description: A vulnerability exits in driver SmSerl64.sys in Motorola SM56 Modem WDM Driver v6.12.23.0, which allows low-privileged users to mapping physical memory via specially crafted IOCTL requests . This can be exploited for privilege escalation, code execution under high privileges, and information disclosure. These signed drivers can also be used to bypass the Microsoft driver-signing policy to deploy malicious code.

EPSS Score: 0.04%

Source: CVE
January 8th, 2025 (3 months ago)

CVE-2024-55413
A vulnerability exits in driver snxppamd.sys in SUNIX Parallel Driver x64 - 10.1.0.0, which allows low-privileged users to read and write arbitary...
Description: A vulnerability exits in driver snxppamd.sys in SUNIX Parallel Driver x64 - 10.1.0.0, which allows low-privileged users to read and write arbitary i/o port via specially crafted IOCTL requests . This can be exploited for privilege escalation, code execution under high privileges, and information disclosure. These signed drivers can also be used to bypass the Microsoft driver-signing policy to deploy malicious code.

EPSS Score: 0.04%

Source: CVE
January 8th, 2025 (3 months ago)

CVE-2024-49087
Windows Mobile Broadband Driver Information Disclosure Vulnerability
Description: Windows Mobile Broadband Driver Information Disclosure Vulnerability

CVSS: MEDIUM (4.6)

EPSS Score: 0.05%

Source: CVE
January 7th, 2025 (4 months ago)

CVE-2024-49086
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
Description: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

CVSS: HIGH (8.8)

EPSS Score: 0.05%

Source: CVE
January 7th, 2025 (4 months ago)