Tag: Cybersecurity Threat Advisory

Cisco removed a backdoor account from its Unified Communications Manager (Unified CM) and Unified Communications Manager Session Management Edition (Unified CM SME), tracked as CVE-2025-20309. This critical vulnerability, with a CVSS score of 10, enabled unauthorized remote access to unpatched...

Jack Perry / July 9, 2025

Cybersecurity Threat Advisory: Zero-day Chrome vulnerability

Featured Security

Cybersecurity Threat Advisory: Zero-day Chrome vulnerability

Google has patched a high-severity zero-day vulnerability, tracked as CVE-2025-6554 with a CVSS score of 8.1, in Chrome’s V8 engine that allows attackers to execute arbitrary code via a crafted HTML page. Review the details of this Cybersecurity Threat Advisory...

Leavar Michel / July 2, 2025

Cybersecurity Threat Advisory: Severe WebDAV vulnerability

Featured Security

Cybersecurity Threat Advisory: Severe WebDAV vulnerability

Microsoft has disclosed a serious zero-day vulnerability in the Web Distributed Authoring and Versioning (WebDAV) protocol, identified as CVE-2025-33053, with a CVSS score of 8.8. Actively exploited by the Stealth Falcon APT group, this vulnerability enables remote code execution (RCE)...

Sourabh Verma / June 30, 2025

Cybersecurity Threat Advisory: Citrix Gateway vulnerability

Featured Security

Cybersecurity Threat Advisory: Citrix Gateway vulnerability

Citrix has issued emergency patches for a critical memory overflow flaw that impacts NetScaler ADC and Gateway. Exploitation can lead to denial-of-service (DoS) and system control issues. Review this Cybersecurity Threat Advisory for guidance on protecting your systems against this...

Stacey Landrum / June 26, 2025

Cybersecurity Threat Advisory: Global Microsoft Exchange attack

Security

Cybersecurity Threat Advisory: Global Microsoft Exchange attack

A recent cyber campaign has compromised over 70 Microsoft Exchange servers across 26 countries by injecting JavaScript-based keyloggers into Outlook Web Access (OWA) login pages. Review the details of this Cybersecurity Threat Advisory to safeguard against these vulnerabilities. What is...

Mona Gujral / June 25, 2025

Cybersecurity Threat Advisory: Vulnerabilities in Linux distributions

Featured Security

Cybersecurity Threat Advisory: Vulnerabilities in Linux distributions

Two critical local privilege escalation (LPE) vulnerabilities were disclosed, identified as CVE-2025-6018 and CVE-2025-6019. These vulnerabilities affect all versions of SUSE 15 and libblockdev, two major Linux distributions, allowing unprivileged users to escalate their privileges to root and posing significant...

Darshit Kothari / June 24, 2025

Cybersecurity Threat Advisory: Critical Grafana vulnerability

Featured Security

Cybersecurity Threat Advisory: Critical Grafana vulnerability

A newly disclosed Grafana vulnerability puts thousands of monitoring systems at risk of compromise through a simple malicious link. Review this Cybersecurity Threat Advisory to secure your environment. What is the threat? To exploit CVE-2025-4123, multiple conditions must be met....

Owen Kenny / June 20, 2025

Cybersecurity Threat Advisory: Critical Veeam vulnerability

Featured Security

Cybersecurity Threat Advisory: Critical Veeam vulnerability

Veeam has released security patches to address a critical vulnerability in its Backup & Replication software, identified as CVE-2025-23121. The flaw allows unauthenticated remote attackers to execute arbitrary code under certain conditions. Review the details of this Cybersecurity Threat Advisory...

Vincent Yu / June 19, 2025

Cybersecurity Threat Advisory: TP-Link and Zyxel devices targeted

Featured Security

Cybersecurity Threat Advisory: TP-Link and Zyxel devices targeted

Two vulnerabilities are actively targeted by threat actors for exploits, CVE-2023-33538, affects TP-Link routers, and CVE-2023-28771, affects Zyxel firewalls. Review this Cybersecurity Threat Advisory to help mitigate the risk of attackers targeting these vulnerabilities. What is the threat? CVE-2023-33538...

Sana Ansari / June 18, 2025

Cybersecurity Threat Advisory: Wazuh servers targeted to launch Mirai attacks

Featured Security

Cybersecurity Threat Advisory: Wazuh servers targeted to launch Mirai attacks

Threat actors are actively targeting Wazuh servers running software version 4.4.0 by exploiting a vulnerability that enables them to install Mirai botnets. These botnets facilitate distributed denial of service (DDoS) attacks against victims and execute malicious payloads on the compromised...

Leavar Michel / June 12, 2025

Categories

Tags

Archives

Tag: Cybersecurity Threat Advisory

Cybersecurity Threat Advisory: Cisco Unified CM backdoor account removal

Cybersecurity Threat Advisory: Zero-day Chrome vulnerability

Cybersecurity Threat Advisory: Severe WebDAV vulnerability

Cybersecurity Threat Advisory: Citrix Gateway vulnerability

Cybersecurity Threat Advisory: Global Microsoft Exchange attack

Cybersecurity Threat Advisory: Vulnerabilities in Linux distributions

Cybersecurity Threat Advisory: Critical Grafana vulnerability

Cybersecurity Threat Advisory: Critical Veeam vulnerability

Cybersecurity Threat Advisory: TP-Link and Zyxel devices targeted

Cybersecurity Threat Advisory: Wazuh servers targeted to launch Mirai attacks