Alerts Archives - EG-FinCIRT

SAP Security Patch Day September 2025

SAP has released security updates to address several vulnerabilities affecting multiple SAP products. SAP has released a patch that fixes several vulnerabilities affecting multiple SAP products, such as SAP NetWeaver, SAP S/4HANA, SAP Landscape Transformation, SAP Business One, ABAP Platform, SAP Cloud, SAP BusinessObjects Business Intelligence Platform, and SAP Supplier Relationship Management. The attacker could […]

SAP Security Patch Day September 2025 Read More »

Google Chrome Security Update – 03 September 2025

Alerts

Google has released an updated Chrome version 140.0.7339.80/81 for Windows, Mac, and 140.0.7339.80 for Linux. The addressed vulnerabilities could allow the remote attacker to bypass security restrictions or execute arbitrary code and gain access to the affected system by persuading the victim to visit a specially crafted website. Sample of the addressed vulnerabilities: 1. Google

Google Chrome Security Update – 03 September 2025 Read More »

Cisco Security Updates – 28 August 2025

Alerts

Cisco has released security updates to fix several vulnerabilities affecting multiple Cisco products. The addressed vulnerabilities could allow the attacker to perform denial of service attacks, conduct cross-site scripting attacks, manipulate files, obtain sensitive information, or gain elevated privileges on the affected product. Sample of addressed vulnerabilities: 1. Cisco Nexus 3000 and 9000 Series Switches

Cisco Security Updates – 28 August 2025 Read More »

Google Chrome Security Update – 28 August 2025

Alerts

Google has released an updated Chrome version 139.0.7258.154/.155 for Windows, Mac, and 139.0.7258.154 for Linux. The addressed vulnerability could allow the remote attacker to execute arbitrary code and gain access to the affected system by persuading a victim to visit a specially crafted website. Google Chrome Code Execution Vulnerability (CVE-2025-9478): CVSS: 8.8 Attack Vector: Network

Google Chrome Security Update – 28 August 2025 Read More »

Citrix Security Updates – 27 August 2025

Alerts, Announcements

Citrix has released a security update to address several vulnerabilities affecting Citrix NetScaler ADC and Citrix NetScaler Gateway. The addressed vulnerabilities could allow the attacker to bypass security restrictions, perform denial-of-service attacks, or execute arbitrary code and gain access to the affected systems. Sample of the addressed vulnerabilities: 1. NetScaler ADC and NetScaler Gateway Remote

Citrix Security Updates – 27 August 2025 Read More »

Apple Security Updates – 21 August 2025

Alerts

Apple has released security updates to address a vulnerability across macOS Sequoia, Sonoma, and Ventura. The addressed vulnerability could allow the attacker to execute arbitrary code and gain access to the affected system, caused by a memory corruption issue in the ImageIO component, while processing a malicious image file. Apple macOS Out-of-Bounds Write Vulnerability (CVE-2025-43300):

Apple Security Updates – 21 August 2025 Read More »

Mozilla Firefox Security Updates – 21 August 2025

Alerts

Mozilla has released an updated Firefox version 142, Firefox ESR versions 140.2, 128.14, and 115.27 to fix multiple vulnerabilities. The addressed vulnerabilities could allow the attacker to perform a denial of service attack, spoofing attacks, bypass security restrictions, obtain sensitive information, execute arbitrary code, and gain access to the affected system. Sample of the addressed

Mozilla Firefox Security Updates – 21 August 2025 Read More »

Fortra Security Updates – 20 August 2025

Alerts

Fortra has released security updates to fix several vulnerabilities affecting multiple Fortra products. The addressed vulnerabilities could allow the attacker to perform a denial of service attack, obtain sensitive information, gain elevated privileges, conduct cross-site scripting attacks, or execute arbitrary commands/codes, and gain access to the affected systems. Sample of the addressed vulnerabilities: Fortra FileCatalyst

Fortra Security Updates – 20 August 2025 Read More »

Google Chrome Security Update – 20 August 2025

Alerts

Google has released an updated Chrome version 139.0.7258.138/.139 for Windows, Mac, and 139.0.7258.138 for Linux. The addressed vulnerability could allow the remote attacker to execute arbitrary code and gain access to the affected system by persuading the victim to visit a specially crafted webpage. Google Chrome Code Execution Vulnerability (CVE-2025-9132): CVSS: 8.8 Attack Vector: Network

Google Chrome Security Update – 20 August 2025 Read More »

Apache Tomcat Security Update – 19 August 2025

Alerts

Apache has released a security update to address a vulnerability affecting multiple versions of Apache Tomcat. The addressed vulnerability could allow the remote attacker to perform denial of service attacks on the affected products. Apache Tomcat Denial of Service Vulnerability (CVE-2025-48989): CVSS: 7.5 Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None

Apache Tomcat Security Update – 19 August 2025 Read More »

Drupal Security Updates – 19 August 2025

Alerts, Announcements

Drupal has released security updates to fix several vulnerabilities across multiple Drupal versions. The addressed vulnerabilities could allow the attacker to conduct cross-site scripting attacks, perform server-side request forgery attacks, bypass security restrictions, or gain access to the affected products. Sample of the addressed vulnerabilities: Authenticator Login Module for Drupal (SA-CONTRIB-2025-096) Security Bypass Vulnerability (CVE-2025-8995):

Drupal Security Updates – 19 August 2025 Read More »

F5 Security Updates – 19 August 2025

Alerts

F5 has released security updates to address several vulnerabilities affecting multiple F5 products. The addressed vulnerabilities could allow the attacker to perform denial of service attacks, obtain sensitive information, or gain elevated privileges on the affected products. Sample of the addressed vulnerabilities: 1. F5 BIG-IP Denial of Service Vulnerability (CVE-2025-52585): CVSS: 7.5 Attack Vector: Network

F5 Security Updates – 19 August 2025 Read More »

Cisco Security Updates – 17 August 2025

Alerts, Announcements

Cisco has released security updates to fix several vulnerabilities affecting multiple Cisco products. The addressed vulnerabilities could allow the attacker to perform denial of service attacks, bypass security restrictions, obtain sensitive information, or execute arbitrary code and gain access to the affected systems. Sample of addressed vulnerabilities: 1. Cisco Secure Firewall Management Center Software RADIUS

Cisco Security Updates – 17 August 2025 Read More »

Intel Security Updates – 14 August 2025

Alerts

Intel has released security updates to address several vulnerabilities in multiple Intel products. The addressed vulnerabilities could allow the attacker to gain elevated privileges, obtain sensitive information, or perform denial of service attacks on the affected product. Samples of the addressed vulnerabilities: 1. Intel® 800 Series Ethernet Escalation of Privilege Vulnerability (CVE-2025-24325): CVSS: 8.8 Attack

Intel Security Updates – 14 August 2025 Read More »

Fortinet Security Updates – 13 August 2025

Alerts, Announcements

Fortinet has released security updates to fix several vulnerabilities across multiple products. The addressed vulnerabilities could allow the attacker to gain elevated privileges, perform denial of service attacks, conduct cross-site scripting attacks, obtain sensitive information, bypass security restrictions, read arbitrary files via uploading a malicious solution pack, or execute arbitrary code and gain access to

Fortinet Security Updates – 13 August 2025 Read More »

Google Chrome Security Update – 13 August 2025

Alerts

Google has released an updated Chrome version 139.0.7258.127/.128 for Windows, Mac, and 139.0.7258.127 for Linux. The addressed vulnerabilities could allow the remote attacker to bypass security restrictions, perform denial of service attacks, or execute arbitrary code, and gain access to the affected system by persuading the victim to visit a specially crafted website. Sample of

Google Chrome Security Update – 13 August 2025 Read More »

Ivanti Security Updates – 13 August 2025

Alerts

Ivanti has released security updates to fix several vulnerabilities across multiple Ivanti products. The addressed vulnerabilities could allow the attacker to trigger denial of service attacks, obtain sensitive information, or execute arbitrary code and gain access to the affected system. Sample of the addressed vulnerabilities: 1. Ivanti Connect-Secure Buffer Over-Read Vulnerability (CVE-2025-5456): CVSS: 7.5 Attack

Ivanti Security Updates – 13 August 2025 Read More »

Zoom Security Update – 13 August 2025

Alerts, Announcements

Zoom has released a security update to fix multiple vulnerabilities across Zoom Client for Windows. The addressed vulnerabilities could allow the attacker to perform denial of service attacks, manipulate files, or gain elevated privileges on the affected system. Sample of the addressed vulnerabilities: 1. Zoom Clients for Windows – Untrusted Search Path (CVE-2025-49457): CVSS: 9.6

Zoom Security Update – 13 August 2025 Read More »

Microsoft August 2025 Patch Tuesday

Alerts, Announcements

Microsoft has released its monthly patch of security updates, known as Patch Tuesday. The mentioned patch addressed one zero-day vulnerability. Microsoft has fixed (107) vulnerabilities, with (5) classified as critical, as they could allow the attacker to gain elevated privileges, perform denial of service attacks, perform spoofing over a network, or execute arbitrary code, and

Microsoft August 2025 Patch Tuesday Read More »

SAP Security Updates – 12 August 2025

Alerts, Announcements

SAP has released security updates to address several vulnerabilities affecting multiple SAP products. SAP has released a patch that fixes several vulnerabilities affecting multiple SAP products, such as SAP NetWeaver, SAP S/4HANA, SAP Landscape Transformation, SAP Business One, ABAP Platform, SAP GUI, SAP Cloud, and SAP Fiori applications. The attacker could exploit some of these

SAP Security Updates – 12 August 2025 Read More »

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.