Threat Intelligence Database
Comprehensive database of the latest cyber threats affecting organizations worldwide. Filter and search to find specific threat intelligence relevant to your organization.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threat Intelligence
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-54270: CWE-770: Allocation of Resources Without Limits or Throttling in protobufjs protobuf.jsCVE-2026-54270 0 protobuf.js versions from 8.2.0 to 8.4.2 retained unknown protobuf fields in memory without an option to discard them during decoding. This behavior could lead to excessive memory use when processing crafted payloads with many unknown fields. Version 8.5.0 introduced options to disable unknown-field retention, and 8.6.2 changed the default to discard unknown fields unless explicitly enabled. Join the discussion | CVE Database V5 | 06/22/2026, 16:19:20 UTC Added: 06/22/2026, 17:39:39 UTC |
CVE-2026-54269: CWE-674: Uncontrolled Recursion in protobufjs protobuf.jsCVE-2026-54269 0 protobuf.js versions prior to 8.6.0 and 7.6.3 contain a vulnerability where certain schema-derived names can collide with internal runtime helper properties. This can cause uncontrolled recursion or deterministic exceptions during decoding, verification, object conversion, JSON serialization, or RPC helper invocation. The issue arises from accepting field or service method names like hasOwnProperty, $type, or rpcCall that interfere with protobufjs internals. This vulnerability has a medium severity score of 5.3 and is fixed in versions 8.6.0 and 7.6.3. Join the discussion | CVE Database V5 | 06/22/2026, 16:23:24 UTC Added: 06/22/2026, 17:39:39 UTC |
CVE-2026-48712: CWE-674: Uncontrolled Recursion in protobufjs protobuf.jsCVE-2026-48712 0 protobuf.js versions prior to 7.6.1 and 8.4.1 contain an uncontrolled recursion vulnerability in the toObject() conversion and custom google.protobuf.Any JSON conversion. This can cause a JavaScript call stack exhaustion when processing crafted protobuf binaries with deeply nested Any values. The issue is fixed in versions 7.6.1 and 8.4.1. Join the discussion | CVE Database V5 | 06/22/2026, 16:21:21 UTC Added: 06/22/2026, 17:39:38 UTC |
Showing 1 to 3 of 3 results