Intrucept Security Advisories

ADVISORY IMPACTCVE LAST UPDATED VERSION

SonicWall Releases Patches in Actively Exploited Privilege Escalation Vulnerability		MediumCVE-2025-4060212/18/20251.0
Apple iOS & iPadOS Patch 0-Days Vulnerabilities, Exploited in Targeted AttacksCriticalCVE-2025-43529, CVE-2025-14174, CVE-2025-46285 and more 12/15/20251.0
Attackers to Bypass FortiCloud-SSO Authentication;Patches Released for FortiOS, FortiProxy, FortiWebCriticalCVE-2025-59718, CVE-2025-5971912-10-251.0
SAP Dec 2025 Security Patch Released, Critical RCE Fixed & DoS Vulnerabilities CriticalCVE-2025-42880, CVE-2025-55754, CVE-2025-42928, CVE-2025-42878 & 10 more CVEs 12-09-251.0
Critical Vulnerabilities Identified in React Server Components & Next.jsCriticalCVE-2025-55182, CVE-2025-6647812-05-251.0
Cisco Splunk Enterprise Security Patch Fixed Windows Permissions MisconfigurationHighCVE-2025-20386, CVE-2025-2038712-05-251.0
Android Security Patch December 2025 Fixed 100+ Vulnerabilities Including Zero-DaysCriticalCVE-2025-48631, CVE-2025-48633, CVE-2025-48572 & 104 more CVEs12-03-251.0
Security Advisory
Chrome 143 Update Released, Fixes RCE & Multiple High Severity Vulnerabilities		High CVE-2025-13630, CVE-2025-13631, CVE-2025-13632, CVE-2025-13633 & 9 other CVEs. 12-03-251.0
Urgent OpenVPN Security Patch to Stop Remote Denial of Service AttacksCriticalCVE-2025-12106, CVE-2025-1308612-02-251.0
NVIDIA DGX Spark Security Update Fixed 14 VulnerabilitiesCriticalCVE-2025-33187, CVE-2025-33188, CVE-2025-33189 & 11 more CVEs 11/28/20251.0
Security Advisory
Apache Syncope Patched Security Vulnerability that Affected Multiple Versions of the Identity & Access Management Platform		HighCVE-2025-6599811/27/20251.0
Shai-Hulud’s ‘Second Coming’ npm Malware Infects Popular Developer PackagesHighNA11/26/20251.0
Critical Fluent Bit Vulnerabilities Allow RCE & Cloud Infrastructure at Risk CriticalCVE-2025-12969, CVE-2025-12970, CVE-2025-12972, CVE-2025-12977, CVE-2025-12978 11/25/20251.0
Microsoft Patched Critical Azure Bastion Elevation of Privilege VulnerabilityCriticalCVE-2025-4975211/24/20251.0
SonicWall SSLVPN Vulnerability Allows Remote Attackers to Crash FirewallsHighCVE-2025-4060111/21/20251.0
Chrome V8 Type Confusion Vulnerability Actively Exploited In The WildHighCVE-2025-13223, CVE-2025-1322411/18/20251.0
Zoho Analytics On-Premise Critical SQL Injection Vulnerability Allows Attackers to Takeover DataCriticalCVE-2025-8324 11/14/20251.0
Mozilla Firefox Releases 145 Security Updates, 16 High-Severity Vulnerabilities across multiple Firefox versions & PlatformsHighCVE-2025-13012, CVE-2025-13016 , CVE-2025-13021 and others11/13/20251.0
Gladinet Triofox Patched Critical Unauthenticated Remote Access VulnerabilityCriticalCVE-2025-1248011-12-251.0
Microsoft November Updates- Fixes 63 Vulnerabilities,1 Zero-Day Exploits ; Patch NowCriticalCVE-2025-62215, CVE-2025- 62199 and other 61 issues11-12-251.0
Security Advisory
Amazon Workspace Client for Linux Token Vulnerability Fixed in Version 2025.0		HighCVE-2025-1277911-07-251.0
Chrome Latest Update Fixes Multiple High-Severity Security FlawsHighCVE-2025-12725, CVE-2025-12726, CVE-2025-12727, CVE-2025-12728, CVE-2025-12729 11-06-251.0
Critical React Native CLI Vulnerability Enables OS Command Injection CriticalCVE-2025-1195311-05-251.0
Apple Releases iOS & iPadOS 26.1 Update, Fixed Multiple Security VulnerabilitiesHighCVE-2025-43438, CVE-2025-43429, CVE-2025-43442, CVE-2025-43455, CVE-2025-43398 & others11-04-251.0
Critical Brash Vulnerability: Blink Engine Flaw Breaks Chromium BrowsersHighNA10/31/20251.0
Critical Apache Tomcat Vulnerabilities Enable RCECriticalCVE-2025-55754, CVE-2025-5575210/29/20251.0
High-severity path traversal vulnerability was identified in Docker ComposeHighCVE-2025-62725 10/29/20251.0
Copilot Studio SupplyChain Attack Steals OAuth Tokens via CoPhishingHighNA10/28/20251.0
Microsoft Teams Access Token Vulnerability Allows Attack Vector for Data ExfiltrationHighNA10/27/20251.0
Blogs Security Advisory
Samsung Galaxy S25 Zero-Day Exploit Exposes Camera & Location		HighNA10/27/20251.0
TARmageddon Exploitable Tar Extraction Flaw Exposes Systems to Privilege EscalationHighCVE-2025-6251810/27/20251.0
TP-Link Security Update, Omada Gateway Exploits Fixed in October ReleaseCriticalCVE-2025-6541, CVE-2025-6542, CVE-2025-7850, CVE-2025-7851 10/22/20251.0
Security Advisory
WatchGuard Patched Critical Vulnerability, Allowing RCE in Firebox Appliances		CriticalCVE-2025-924210/22/20251.0
Advanced eBPF Rootkit LinkPro Evade Detection in Linux Systems via Magic TCP PacketsHighNA10/18/20251.0
Fortinet Released Security Update’s; Patched Multiple High & Medium Severity VulnerabilitiesHighCVE-2025-49201, CVE-2025-58325, CVE-2025-57740, CVE-2025-57741 & others10/16/20251.0
Ivanti Endpoint Manager Vulnerabilities Expose Systems to RCE, SQL & Privilege Escalation RisksHigh CVE-2025-11622, CVE-2025-9713 & CVEs for SQL10/15/20251.0
Microsoft October Patch Fixes 175 Vulnerabilities, 6 Zero-Days & Critical ExploitsCriticalCVE-2025-24990, CVE-2025-59230 and others10/15/20251.0
Elastic Patched Critical Jinjava Template Injection in Elastic Cloud Enterprise(ECE) CriticalCVE-2025-3772910/14/20251.0
Elastic Releases Critical Security Updates for Kibana & ElasticsearchHighCVE-2025-25009, CVE-2025-25017, CVE-2025-25018, CVE-2025-37727, CVE-2025-37728 10-09-251.0
CrowdStrike Releases Security Updates for Falcon Sensor Windows VulnerabilitieMedium CVE-2025-42701, CVE-2025-4270610-09-251.0
Critical Lua Sandbox Escape Flaw in Redis Allows Remote Code Execution (RCE)CriticalCVE-2025-4984410-08-251.0
Google Chrome Patched High-Severity Memory VulnerabilitiesHighCVE-2025-11458, CVE-2025-11460, CVE-2025-1121110-08-251.0
Critical Oracle EBS 0-Day Hit by Clop Ransomware; Oracle Released Emergency PatchCriticalCVE-2025-6188210-06-251.0
CISA Warns Critical Cisco Firewall Vulnerabilities Under Active ExploitationCriticalCVE-2025-20333, CVE-2025-203629/26/20251.0
Zero-Click ShadowLeak Vulnerability in ChatGPT Agent Exposes Sensitive Data via Hidden Email PromptsHighNA9/19/20251.0
Radware Uncovers Server Side Attack Targeting ChatGPT Known as ShadowleakHighNA9/19/20251.0
Chrome Security Update Fixed Active Zero-Day Exploit & Multiple High-Severity Vulnerabilities HighCVE-2025-10585, CVE-2025-10500, CVE-2025-10501, CVE-2025-105029/18/20251.0
Jenkins Security Patch Fixed HTTP/2 DoS and Permission IssuesHighCVE-2025-5115, CVE-2025-59474, CVE-2025-59475, CVE-2025-594769/18/20251.0
Spring Security & Framework Authorization Bypass Vulnerabilities PatchedMediumCVE-2025-41248, CVE-2025-412499/17/20251.0
Shai-Hulud NPM Supply Chain Attack Expands to 470+ Packages HighNA9/17/20251.0
VoidProxy PhaaS Uses MFA Bypass, Hijacking Google and Microsoft LoginsHighNA9/16/20251.0
Angular SSR Vulnerability Allows Cross-Request Data ExposureHighCVE-2025-5905209-12-251.0
Microsoft Releases September 2025 Security Updates: 86 Fixes, 2 Zero-Day VulnerabilitiesHighCVE-2025-55234, CVE-2024-2190709-10-251.0
Patch Now: Critical Unauthorized Property Modification Vulnerability in Spring Cloud Gateway WebFluxCriticalCVE-2025-4124309-09-251.0
Critical WhatsApp Zero-Day Vulnerability Allows Remote Code Execution MediumCVE-2025-5517709-05-251.0
Chrome Update Released, Fixes RCE and Multiple VulnerabilitiesHighCVE-2025-9864, CVE-2025-9865, CVE-2025-9866, CVE-2025-986709-05-251.0
Fake Government & Banking Apps Used to Spread Android MalwareHighNA09-04-251.0
MediaTek Patches Critical Modem Vulnerabilities Affecting Millions of DevicesHighCVE-2025-20708, CVE-2025-20703, CVE-2025-20704, CVE-2025-20705, CVE-2025-20706, CVE-2025-2070709-03-251.0
Critical Chrome Use-After-Free Vulnerability in ANGLE Graphics LibraryHighCVE-2025-94788/29/20251.0
Multiple Critical Vulnerabilities in Citrix NetScaler ADC/Gateway, One Actively Exploited in WildCriticalCVE-2025-7775, CVE-2025-7776, CVE-2025-84248/28/20251.0
Docker Desktop Vulnerability Allows Full Host Compromise via Exposed APICriticalCVE-2025-90748/24/20251.0
Apple Patches Zero-Day Vulnerability Exploited in Targeted Attacks (CVE-2025-43300)HighCVE-2025-433008/22/20251.0
WhatsApp Privacy Advisory: Protect Your ConversationsHighN/A8/20/20251.0
PostgreSQL High-Severity RCE Flaws in pg_dump Utilities Allow Remote Code ExecutionHighCVE-2025-8715, CVE-2025-8714, CVE-2025-87138/19/20251.0
Microsoft IIS Web Deploy RCE Vulnerability Allows Authenticated Remote Code ExecutionHighCVE-2025-537728/18/20251.0
Microsoft Patches 119 Vulnerabilities in August Patch Tuesday; Kerberos Zero‑Day Publicly DisclosedCriticalCVE-2025-537798/13/20251.0
7-Zip Security Flaw Allows Malicious File Writes and Potential ExploitsLowCVE-2025-5518808-12-251.0
WinRAR Zero-Day Path Traversal Flaw Actively Exploited to Code ExecutionHighCVE-2025-808808-11-251.0
Zero-Day Exploitation in SonicWall Targeted by Akira RansomwareCriticalN/A08-06-251.0
Patch Now! Claude Code Vulnerabilities Allow Unauthorized Command Execution, CVEs Affect AI Security FoundationsHighCVE-2025-54794, CVE-2025-5479508-05-251.0
Gemini CLI Vulnerability Enables Silent Execution of Malicious Commands on Developer SystemsCriticalN/A08-01-251.0
Patch Now! Critical Command Injection in GitHub Action tj-actions/branch-names Affects 5,000+ ReposCriticalCVE-2025-544167/29/20251.0
Pre-Auth Remote Code Execution Flaws Patched in Sophos FirewallCriticalCVE-2025-6704, CVE-2025-76247/23/20251.0
Critical Remote Code Execution in Nokia WaveSuite NOCCriticalCVE-2025-24936, CVE-2025-249387/22/20251.0
Critical Zero-Day Vulnerabilities in VMware Exploited at Pwn2Own 2025 – Patch Immediately CriticalCVE-2025-41236, CVE-2025-41237, CVE-2025-41238, CVE-2025-412397/18/20251.0
ToolShell Zero-Day Exploits in Microsoft SharePoint Enable Full Remote TakeoverCriticalCVE-2025-340677/18/20251.0
Google Addresses Actively Exploited Zero-Day Vulnerability CVE-2025-6558 in ChromeHighCVE-2025-65587/17/20251.0
CVE-2025-34067: Critical RCE in HikCentral Puts Global Surveillance at Risk, PoC AvailableCriticalCVE-2025-340677/17/20251.0
Mercedes, VW, Skoda Cars at Risk from Critical PerfektBlue Bluetooth VulnerabilitiesHighCVE-2024-45431, CVE-2024-45432, CVE-2024-45433, CVE-2024-45434,7/16/20251.0
SEO Poisoning Campaign Targets IT Admins with Weaponized PuTTY and WinSCPHighN/A7/15/20251.0
Phishing for Gemini: Invisible Prompts Turn AI Summaries into Attack VectorsHighN/A7/14/20251.0
Critical Flaws Expose Schneider DCE to Remote Exploits – Patch NowCriticalCVE-2025-50121, CVE-2025-50122, CVE-2025-50123, CVE-2025-5012507-11-251.0
CitrixBleed 2: Critical CVE-2025-5777 Vulnerability Under Active Exploitation with Public PoC AvailableCriticalCVE-2025-577707-09-251.0
Grafana Fixes Critical Chromium Vulnerabilities, Including Active Zero-Day ExploitHighCVE-2025-6554, CVE-2025-5959, CVE-2025-6191
CVE-2025-6192		07-09-251.0
Microsoft Plug 140 Vulnerabilities in July Patch Tuesday; SQL Server Zero-Day DisclosedHighN/A07-09-251.0
Linux Local Privilege Escalation via udisksd and libblockdev (CVE-2025-6019) PoC released HighCVE-2025-601907-07-251.0
12-Year-Old Sudo Vulnerability and Chroot Flaw Enable Privilege Escalation CriticalCVE-2025-32463, CVE-2025-3246207-04-251.0
Google Chrome Zero-Day Vulnerability (CVE-2025-6554) Actively Exploited – Patch NowCriticalCVE-2025-655407-01-251.0
Critical Unauthenticated RCE Vulnerabilities in Cisco ISE and ISE-PICCriticalCVE-2025-20281, CVE-2025-202826/27/20251.0
Citrix NetScaler ADC/Gateway Vulnerability Exploited in the Wild (CVE-2025-6543) CriticalCVE-2025-65436/26/20251.0
Privilege Escalation in Notepad++ v8.8.1 Installer via Binary Planting with Public PoC AvailableHighCVE-2025-491446/24/20251.0
Privilege Escalation Vulnerability in AI Engine WordPress Plugin, Allows Subscriber-Level Account Takeover HighCVE-2025-50716/20/20251.0
Apache Tomcat Vulnerabilities Expose Systems to DoS and Authentication Bypass HighN/A6/18/20251.0
Google Chrome Zero-Day CVE-2025-2783 Exploited in APT Group TaxOff Campaigns HighCVE-2025-27836/18/20251.0
Veeam Backup Patched Critical Vulnerabilities Enabling RCE & Privilege Escalation CriticalCVE-2025-23121, CVE-2025-24286, CVE-2025-242876/18/20251.0
Microsoft June 2025 Patch Tuesday – 67 Vulnerabilities Fixed Including 2 Zero-DaysHighN/A06-12-251.0
Critical 0-Day RCE Vulnerability in Fortinet Products (CVE-2025-32756) Actively ExploitedCriticalCVE-2025-3275606-10-251.0
POC Released for Critical RCE Vulnerability in AWS Amplify Codegen-UI CriticalCVE-2025-431806-09-251.0
Critical Credential Reuse Vulnerability in Cisco ISE Cloud DeploymentsCriticalCVE-2025-2028606-06-251.0
Reflected XSS Vulnerability in Splunk Enterprise & Cloud PlatformMediumCVE-2025-4886606-05-251.0
Critical Zero-Day Vulnerabilities in Qualcomm Adreno GPU Drivers Actively Exploited HighCVE-2025-31324, CVE-2025-4299906-04-251.0
Critical Vulnerabilities Patched in IBM QRadar Suite and Cloud Pak for SecurityCriticalCVE-2025-25022, CVE-2025-2502, CVE-2025-25020, CVE-2025-25019, CVE-2025-133406-04-251.0
High Risk DoS Vulnerability in ModSecurity WAFHighCVE-2025-2029706-04-251.0
Google Chrome Patches Actively Exploited Zero-Day VulnerabilityHighCVE-2025-541906-03-251.0
BadSuccessor Vulnerability in Windows Server 2025 Enables Domain Admin Privilege EscalationMediumN/A5/28/20251.0
Remote Command Execution Risk in Legacy D-Link Routers Due to Hardcoded Telnet CredentialsMediumCVE-2025-461765/27/20251.0
Linux Kernel Exploitation in ksmbd (CVE-2025-37899) Discovered with AI AssistanceHighCVE-2025-378995/23/20251.0
Cisco ISE and UIC Security Flaws Allow DoS and Privilege EscalationHighCVE-2025-20152, CVE-2025-20113, CVE-2025-201145/22/20251.0
Critical Privilege Escalation Vulnerability in Motors WordPress Theme CriticalCVE-2025-43225/21/20251.0
Critical Firefox 0-Day Vulnerabilities Exploited at Pwn2Own 2025 – Immediate Update Required HighCVE-2025-4918, CVE-2025-49195/20/20251.0
Zero-Day Threat in Chrome’s Loader Component (CVE-2025-4664) – CISA Flags Urgent RiskMediumCVE-2025-46645/14/20251.0
Microsoft May 2025 Patch Tuesday Released; Fixed 83 Vulnerabilities, Including 5 Zero-DaysHighN/A5/13/20251.0
Critical SAP NetWeaver Vulnerabilities Addressed in May 2025 Patch – Immediate Action Required HighCVE-2025-31324, CVE-2025-429995/13/20251.0
FBI Warns End-of-Life Routers Exploited in Active Botnet and Proxy Campaigns HighN/A05-11-251.0
OpenCTI Web-Hook Flaw Enables Full System CompromiseCriticalCVE-2025-2497705-06-251.0
Apache Parquet Java Vulnerability Enables Remote Code Execution via Avro Schema HighCVE-2025-4676205-05-251.0
Tesla Model 3 VCSEC Vulnerability Allows Remote Code Execution via TPMS Exploit HighCVE-2025-208205-02-251.0
High-Severity Linux Kernel Flaw Exposes Systems to Root-Level AttacksHighCVE-2025-217564/30/20251.0
Critical SAP NetWeaver Zero-day Vulnerability Exploited in the Wild CriticalCVE-2025-313244/29/20251.0
Windows Update Stack Privilege Escalation Vulnerability (CVE-2025-21204) – PoC ReleasedHighCVE-2025-212044/23/20251.0
Windows 11 DLL Flaws Open Doors to Privilege Escalation! HighCVE-2025-24994, CVE-2025-240764/21/20251.0
Critical Session Management Vulnerability in Apache Roller CriticalCVE-2025-248594/15/20251.0
Dell Releases Patches for Multiple PowerScale OneFS Security Vulnerabilities CriticalCVE-2025-27690, CVE-2025- 26330, CVE-2025-224714/13/20251.0
Critical Flaw in FortiSwitch of Fortinet Allows Attackers to Change Admin PasswordCriticalCVE-2024-4888704-10-251.0
Spoofing Vulnerability in WhatsApp Desktop for WindowsMediumCVE-2025-3040104-09-251.0
April Zero-Day Threats Addressed in Microsoft’s Patch TuesdayHighN/A04-09-251.0
WordPress Ultimate CSV Importer Flaws Put 20,000+ Sites at RiskHighCVE-2025-2008, CVE- 2025-200704-03-251.0
3 Zero-Day Vulnerabilities backported & fixed in Apple DevicesHighCVE-2025-24201, CVE-2025-24085, and CVE-2025-24200.04-02-251.0
Windows Zero-Day Exploit NTLM Hash Disclosure via Malicious FilesCriticalZero-Day3/28/20251.0
Critical Chrome Vulnerability (CVE-2025-2783) Exploited in Cyber-Espionage CampaignHighCVE-2025-27833/28/20251.0
Update Google Chrome to Fix Critical Remote Code Execution Vulnerability in LensHighCVE-2025-24763/25/20251.0
Critical NGINX Ingress Vulnerabilities Expose Kubernetes Clusters to CompromiseCriticalN/A3/25/20251.0
WordPress Age Gate Plugin Critical Vulnerability (CVE-2025-2505) Affects Over 40,000 WebsitesCriticalCVE-2025-25053/24/20251.0
New Exploit Allows Remote Code Execution in Apache TomcatCriticalCVE-2025-248133/20/20251.0
Apache NiFi Security Flaw Exposes MongoDB Credentials MediumCVE-2025-270173/17/20251.0
Multiple High-Severity Vulnerabilities Patched in Zoom HighCVE-2025-27440, CVE-2025-27439, CVE-2025-0151, CVE-2025-0150, CVE-2025-01493/14/20251.0
Zero-Day Threats Addressed in Microsoft’s March 2025 Patch TuesdayCritical--3/13/20251.0
High-Severity RCE Vulnerability in WinDbg (CVE-2025-24043) HighCVE-2025-2404303-12-251.0
PoC Released for High-Severity Linux Kernel UVC Driver VulnerabilityHighCVE-2024-5310403-11-251.0
Critical VMware Vulnerabilities Exploited in the Wild – Patch Immediately CriticalCVE-2025-22224, CVE-2025-22225, CVE-2025-2222603-07-251.0
Critical Security Flaw in Kibana Requires Immediate Attention CriticalCVE-2025-2501203-07-251.0
Critical Vulnerabilities in IBM Storage: Authentication Bypass and Code Execution RisksCriticalCVE-2025-0159, CVE-2025-016003-06-251.0
Decade-Old Threat: CVE-2018-8639 Still Poses Risks to Unpatched WindowsHighCVE-2018-863903-05-251.0
Wazuh Server Vulnerability (CVE-2025-24016) Exposes Systems to RCE AttacksCriticalCVE-2025-2401603-04-251.0
High-Severity DoS Vulnerability in Cisco NX-OS SoftwareHighCVE-2025-201112/28/20251.0
Critical WordPress Security Flaw in Everest Forms PluginCriticalCVE-2025-11282/27/20251.0
Exploitable Command Injection in F5 BIG-IP (CVE-2025-20029)HighCVE-2025-200292/24/20251.0
Palo Alto Firewall Vulnerabilities Under Active ExploitationHighCVE-2025-01082/20/20251.0
Authentication Bypass Vulnerability in FortiOS & FortiProxyCriticalCVE-2025-244722/13/20251.0
Apple’s USB Restricted Mode Exploited in Targeted AttacksHigh--02-12-251.0
Microsoft Updates Patch Tuesday for Feb 2025; Address 67 Vulnerabilities, Includes 2 Exploited Zero-Days High--02-12-251.0
7Zip Mark-Of-The-Web VulnerabilityHighCVE-2025-041102-10-251.0
Active Exploitation of Microsoft Outlook RCE Vulnerability (CVE-2024-21413)CriticalCVE-2024-2141302-07-251.0
Zero-Day Vulnerability in Microsoft Sysinternals Tools High--02-05-251.0
macOS Security at Risk: PoC Exploit for CVE-2025-24118 Kernel Flaw CriticalCVE-2025-2411802-03-251.0
High-Severity SMB Server Flaws (CVE-2024-56626 & CVE-2024-56627) in Linux KernelHighCVE-2024-56626, CVE-2024-566271/29/20251.0
Apple Patched Actively Exploited Zero-Day Vulnerability HighCVE-2025-240851/29/20251.0
Privilege Escalation Vulnerability Exposes Cisco Meeting Management to AttacksCriticalCVE-2025-201561/24/20251.0
Critical Authentication Bypass Vulnerability in Fortinet Products Under Active ExploitationCriticalCVE-2024-555911/23/20251.0
Critical Zero-Day Vulnerability in Windows (CVE-2024-49138): PoC Released, Exploited in the WildHighCVE-2024-491381/20/20251.0
Privilege Escalation Vulnerability in ComboBlocks Plugin Affects Thousands of Sites CriticalCVE-2024-96361/17/20251.0
Critical Security Updates: Microsoft Jan 2025 Patch Tuesday Fixes 8 Zero-Days & 159 Vulnerabilities Critical--1/16/20251.0
Important Security Alert: SonicWall Issues Patch for SSL-VPN Vulnerabilities HighCVE-2024-537041/15/20251.0
Banshee Stealer: A Growing Threat to macOS Users High--1/15/20251.0
GitLab Releases Patch to Fix Critical and High-Severity Vulnerabilities High--1/13/20251.0
Ivanti Connect Secure VPN Actively Being Exploited in the Wild HighCVE-2025-0282, CVE-2025-028301-10-251.0
Race Condition Vulnerability in OpenSSH (CVE-2024-6387): PoC Exploit Released HighCVE-2024-638701-09-251.0
Critical Windows Privilege Escalation Vulnerability with Public Exploit HighCVE-2024-4364101-07-251.0
Exploit Proof-of-Concept Released for LDAP CVE-2024-49113 CriticalCVE-2024-4911301-06-251.0
Denial of Service Vulnerability in DNS Security Feature of Palo Alto Networks PAN-OS HighCVE-2024-339301-03-251.0
Critical Apache Tomcat Vulnerabilities Allow RCE & DoS CriticalCVE-2024-50379, CVE-2024-5467712/21/20241.0
Security Advisory Cleo Releases Patch for Critical Vulnerabilities Exploited in the Wild CriticalCVE-2024-55956, CVE-2024-5062312/18/20241.0
Critical Flaw in WordPress Hunk Companion Plugin Enables Unauthorized Plugin InstallationCriticalCVE-2024-1197212/17/20241.0
Security Advisory Zero-Day Vulnerability in Windows Exposes NTLM CredentialsCriticalNot yet assigned12/13/20241.0
Microsoft December 2024 Patch Tuesday: Critical Fixes for Zero-Day and Remote Code ExecutionHigh--12-12-241.0
Advisory on MUT-8694: Threat Actors Exploiting Developer Trust in Open-Source LibrariesHigh--12-10-241.0
RCE and File Deletion Vulnerabilities in Veeam Service Provider ConsoleCriticalCVE-2024-42448, CVE-2024-4244912-05-241.0
Security Update for NVIDIA Base Command & Bright Cluster Managers MediumCVE-2024-013911/29/20241.0
Re-release of November 2024 Exchange Server Security Updates HighCVE-2024-4904011/27/20241.0
November 2024 Microsoft Patches: Addressing Zero-Day Exploits and High-Priority Vulnerabilities High--11/13/20241.0
Palo Alto Account Takeover Vulnerability Actively Exploited CriticalCVE-2024-591011-08-241.0
Critical Remote Code Execution Vulnerability in VMware vCenter Server (CVE-2024-38812)CriticalCVE-2024-38812, CVE-2024-3881310/23/20241.0
Threat Campaign Targeting WordPress Sites with Malicious Plugins Critical--10/22/20241.0
Veeam Vulnerability (CVE-2024-40711) Exploited by Ransomware CriticalCVE-2024-4071110/17/20241.0
Critical Fortinet Vulnerability Exploiting in Wild CriticalCVE-2024-2311310/16/20241.0
Security Advisory Microsoft’s October Security Patches Mitigate Remote Code Execution & Spoofing Risk Critical--10-10-241.0
Zimbra Remote Code Execution Vulnerability (CVE-2024-45519) CriticalCVE-2024-4551910-03-241.0
Widespread of the Necro Trojan Targeting Android Users Critical--9/26/20241.0
Critical RCE Vulnerability Patched in Ivanti Endpoint ManagerCriticalCVE-2024-298479/18/20241.0

Defend Your Business Against The Latest Cyber Threats

Our experts are here to help you
Chat with Our Team
INDIA OFFICE
india
Phone

+91 98454 47250

EMail

bq@intruceptlabs.com

Address

Bengaluru, India

AUSTRALIA OFFICE
Australia
Phone

+61 414 780 058

EMail

bq@intruceptlabs.com

Address

Epping, NSW, 2121, Australia

EUROPE OFFICE
Flag_of_Germany.svg
Phone

+49 1521 024 7217

EMail

bq@intruceptlabs.com

Address

Buchheimer Weg 42, 51107 Köln, Germany

CANADA OFFICE
canada
Phone

+1 41689 89927

EMail

bq@intruceptlabs.com

Address

5, Stauffer Road , Brantford , ON, N3V 0B1 , Canada

UAE OFFICE
united-arab-emirates
Phone

+971 5825 74510

EMail

bq@intruceptlabs.com

Address

Dubai Creek Harbor, UAE

All rights reserved. Developed by Intrucept

Linkedin Envelope
Scroll to top