Cybersecurity Intelligence Center
Known Exploits, CVEs & Patch Alerts - Updated Daily
Critical CVEs
3
Known Exploits
3
Patch Alerts
3
Last Updated
Today
Latest CVEs (Updated Daily)
CVE-2025-0001
CriticalCritical Remote Code Execution in Apache HTTP Server
A critical vulnerability in Apache HTTP Server allows remote attackers to execute arbitrary code through malformed HTTP requests.
Apache Software Foundation
HTTP Server
2.4.0 - 2.4.58
2025-01-28
CVE-2025-0002
HighWindows Kernel Privilege Escalation Vulnerability
An elevation of privilege vulnerability exists in Windows Kernel that allows attackers to gain SYSTEM privileges.
Microsoft
Windows
Windows 10, Windows 11, Windows Server 2019/2022
2025-01-27
CVE-2025-0003
CriticalCritical SQL Injection in Popular CMS Platform
Multiple SQL injection vulnerabilities in WordPress plugin allow remote attackers to extract sensitive database information.
WordPress
Popular Plugin
1.0 - 3.2.1
2025-01-26
CVE-2025-0004
HighChrome V8 Engine Use-After-Free Vulnerability
A use-after-free vulnerability in Chrome's V8 JavaScript engine allows remote code execution through crafted web pages.
Chrome
120.0 - 121.0.6166.0
2025-01-25
CVE-2025-0005
CriticalCritical Vulnerability in OpenSSL Library
A buffer overflow vulnerability in OpenSSL allows remote attackers to cause denial of service or potentially execute code.
OpenSSL Project
OpenSSL
3.0.0 - 3.2.0
2025-01-24
CISA Known Exploited Vulnerabilities
CVE-2024-12345
CriticalActive ExploitationCitrix NetScaler ADC Remote Code Execution
Citrix NetScaler ADC contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary commands.
Citrix
NetScaler ADC
2025-02-18
Required Action: Apply updates per vendor instructions
Note: This vulnerability is being actively exploited in the wild
CVE-2024-54321
CriticalActive ExploitationVMware vCenter Server Authentication Bypass
VMware vCenter Server contains an authentication bypass vulnerability allowing attackers to gain administrative access.
VMware
vCenter Server
2025-02-17
Required Action: Apply security patches immediately
Note: Active exploitation observed by multiple threat actors
CVE-2024-98765
HighActive ExploitationFortinet FortiOS Path Traversal Vulnerability
Fortinet FortiOS contains a path traversal vulnerability that allows attackers to read arbitrary files from the system.
Fortinet
FortiOS
2025-02-16
Required Action: Update to latest firmware version
Note: Exploitation attempts detected globally
Security Patch Alerts
Microsoft January 2025 Patch Tuesday
CriticalMicrosoft releases security updates addressing 89 vulnerabilities, including 12 critical flaws affecting Windows and Office.
12
Critical
45
High
32
Medium
Adobe Emergency Security Update
CriticalAdobe releases out-of-band security updates for Acrobat and Reader addressing actively exploited zero-day vulnerabilities.
3
Critical
2
High
1
Medium
Google Chrome Security Update
HighGoogle releases Chrome 121.0.6167.85 addressing multiple high-severity vulnerabilities in V8 engine and renderer.
0
Critical
8
High
4
Medium