Skip to main content
Press slash or control plus K to focus the search. Use the arrow keys to navigate results and press enter to open a threat.

Threat Intelligence Database

Comprehensive database of the latest cyber threats affecting organizations worldwide. Filter and search to find specific threat intelligence relevant to your organization.

Pro Console Lifetime

Stop chasing alerts. Route them.

Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.

Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)

View Plans & Pricing

API access activates after upgrading in Console -> Billing.

Breach by OffSeqOFFSEQFRIENDS — 25% OFF

Check if your credentials are on the dark web

Instant breach scanning across billions of leaked records. Free tier available.

Scan now

Filter Threats

Narrow down the results by type, severity, or affected countries

Search threats by title, CVE ID, or description. Maximum 100 characters.

Threat Intelligence

Click on any threat for detailed analysis and mitigation recommendations

CVE-2026-57274: CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') in GeoVision Inc. GeoWebPlayerCVE-2026-57274
0

CVE-2026-57274 is a high-severity buffer overflow vulnerability in GeoVision Inc.'s GeoWebPlayer version 1.1.1.0. The vulnerability exists in the websocket server component that handles commands from localhost, specifically in the 'connectionInfo' command handler. This handler copies attacker-controlled JSON strings into fixed-size buffers without enforcing length limits, leading to classic buffer overflow conditions. The flaw affects the password field when no key is present, potentially allowing an attacker to execute arbitrary code or cause denial of service.

Join the discussion
CVE-2026-57267: CWE-129 Improper validation of array index in GeoVision Inc. GeoWebPlayerCVE-2026-57267
0

CVE-2026-57267 is a high-severity vulnerability in GeoVision Inc.'s GeoWebPlayer version 1.1.1.0. The vulnerability involves improper validation of array indices in the Websocket server component, which accepts commands from localhost. Specifically, the 'index' parameter used in various commands is not properly checked for valid range, allowing out-of-bounds array access. This can lead to critical impacts including confidentiality, integrity, and availability compromise. No official patch or remediation guidance is currently available from the vendor.

Join the discussion

Showing 1 to 2 of 2 results

Page 1 of 1
OffSeq TrainingCredly Certified

Lead Pen Test Professional

Technical5-day eLearningPECB Accredited
View courses