Tag: Cybersecurity Threat Advisory

Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical Fortinet admin password change flaw
FeaturedSecurity

Cybersecurity Threat Advisory: Critical Fortinet admin password change flaw

Fortinet has recently addressed a critical vulnerability in its FortiSwitch products, identified as CVE-2024-48887, with a CVSS score of 9.3. This “unverified password change” flaw allows remote, unauthenticated attackers to modify administrator passwords through specially crafted requests to the FortiSwitch...

/ April 16, 2025
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical CrushFTP vulnerability
FeaturedSecurity

Cybersecurity Threat Advisory: Critical CrushFTP vulnerability

A critical CrushFTP, CVE-2025-2825, with a CVSS score of 9.8, flaw has been discovered. It enables attackers to bypass authentication on CrushFTP servers, posing a high-severity risk to corporate environments. Continue reading this Cybersecurity Threat Advisory for details on how...

/ April 10, 2025
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical Ivanti Connect Secure flaw
FeaturedSecurity

Cybersecurity Threat Advisory: Critical Ivanti Connect Secure flaw

A critical vulnerability, identified as CVE-2025-22457, has been discovered in Ivanti Connect Secure (ICS) VPN appliances. This flaw is actively exploited in the wild, allowing attackers to execute arbitrary code remotely. Review the details within this Cybersecurity Threat Advisory to...

/ April 9, 2025
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Apache RCE vulnerability
FeaturedSecurity

Cybersecurity Threat Advisory: Apache RCE vulnerability

A critical remote code execution (RCE) vulnerability in Apache Parquet, identified as CVE-2025-30065, with a CVSS score of 10.0, has been discovered. Continue reading this Cybersecurity Threat Advisory to learn how to effectively mitigate your risks. What is the threat?...

/ April 9, 2025
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Exploited Cisco backdoor flaw
FeaturedSecurity

Cybersecurity Threat Advisory: Exploited Cisco backdoor flaw

CVE-2024-20439 is a critical authentication bypass vulnerability in Cisco’s Smart Licensing Utility (CSLU). Attackers exploit this backdoor to gain unauthorized administrative access to vulnerable systems. The vulnerability affects specific versions of the standalone CSLU software, which is used to manage...

/ April 5, 2025
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical Ivanti vulnerability found in appliances
FeaturedSecurity

Cybersecurity Threat Advisory: Critical Ivanti vulnerability found in appliances

Researchers identified a critical vulnerability, CVE-2025-0282, that affects Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti Neurons, zero trust access (ZTA) gateways. This vulnerability can enable unauthenticated remote code execution (RCE), allow attackers to compromise the security and integrity of...

/ April 4, 2025
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Microsoft zero-day vulnerability
FeaturedSecurity

Cybersecurity Threat Advisory: Microsoft zero-day vulnerability

Microsoft disclosed a vulnerability, CVE-2025-26633, affecting the Microsoft Management Console (MMC). A known threat actor called EncryptHub is exploiting it. Read this Cybersecurity Threat Advisory to learn how to mitigate your risks from this zero-day vulnerability. What is the threat?...

/ March 28, 2025
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical NetApp SnapCenter vulnerability
FeaturedSecurity

Cybersecurity Threat Advisory: Critical NetApp SnapCenter vulnerability

NetApp SnapCenter disclosed a critical security vulnerability, identified as CVE-2025-26512. This flaw enables authenticated users to escalate their privileges and gain unauthorized administrative access upon successful exploitation. Continue reading this Cybersecurity Threat Advisory to learn more about this vulnerability and...

/ March 28, 2025
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Critical Ingress vulnerabilities
FeaturedSecurity

Cybersecurity Threat Advisory: Critical Ingress vulnerabilities

Researchers identified several critical vulnerabilities in the Ingress NGINX Controller for Kubernetes, including CVE-2025-24513, CVE-2025-24514, CVE-2025-1097, CVE-2025-1098, and CVE-2025-1974. These flaws enables threat actors to execute unauthenticated remote code. Review the details of this Cybersecurity Threat Advisory to keep your...

/ March 26, 2025
Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: RCE vulnerability in Veeam Backup & Replication
FeaturedSecurity

Cybersecurity Threat Advisory: RCE vulnerability in Veeam Backup & Replication

A vulnerability, tracked as CVE-2025-23120, with a CVSS score of 9.9, has been discovered in Veeam Backup & Replication. This vulnerability can allow attackers to exploit the system and execute remote code on the Veeam Backup Server. Continue reading this...

/ March 26, 2025
1 2 3 4 5 58