Dashboard

Your vulnerability intelligence briefings

Recent Episodes

Your Podcast Library

Threat Intelligence

Vite Zero-Day Exploited in Wild

CRITICAL

May 30

Critical vulnerability in Vite allows exposure of sensitive files using ?inline&import or ?raw?import parameters.

CVE-2025-31125

CVSS 9.8

95% relevant

vBulletin Forum Software Under Active Attack

CRITICAL

May 26

Two critical vulnerabilities in vBulletin allow unauthenticated remote code execution via API method bypass and template engine exploitation.

CVE-2025-48827

CVSS 10

88% relevant

Ivanti EPMM Zero-Day Exploit Chain

CRITICAL

May 19

Nation-state actors actively exploiting authentication bypass and code injection vulnerabilities in Ivanti Endpoint Manager Mobile.

CVE-2025-4427

CVSS 9.8

96% relevant

Fortinet Multi-Product RCE Vulnerability

CRITICAL

May 14

Critical stack-based buffer overflow in multiple Fortinet products allows unauthenticated remote code execution.

CVE-2025-32756

CVSS 9.8

92% relevant

TeleMessage Secure Messaging Vulnerabilities

HIGH

May 28

Multiple security flaws in TeleMessage services expose sensitive user data despite claims of end-to-end encryption.

84% relevant

Samsung MagicINFO Server Path Traversal

HIGH

May 22

Actively exploited vulnerability in Samsung MagicINFO 9 Server allows attackers to write arbitrary files with system privileges.

CVE-2025-4632

CVSS 8.8

78% relevant

Chromium Cross-Origin Data Leak

HIGH

May 15

Insufficient policy enforcement in Chromium-based browsers allows attackers to leak cross-origin data via crafted HTML pages.

CVE-2025-4664

CVSS 8.5

90% relevant

Recommended for You

Third-Party Risk Management

Based on your recent vendor onboarding activities

AWS Security Best Practices

Relevant to your cloud infrastructure

Ransomware Readiness Assessment

High threat relevance for your industry

Quantum Computing Threats

Future threat for financial encryption