Alerts

Cisco has released security updates to fix several vulnerabilities affecting multiple Cisco products. The addressed vulnerabilities could allow the attacker to conduct cross-site scripting attacks, obtain sensitive information, perform denial of services attacks, bypass security restrictions, or execute arbitrary commands and gain access to the affected systems. Sample of the addressed vulnerabilities: 1. Cisco Nexus

Microsoft has released an updated Microsoft Edge stable channel (133.0.3065.82) to fix multiple vulnerabilities. The addressed vulnerabilities could allow the remote attacker to perform a denial of service attack or exploit heap corruption via a crafted HTML page and gain access to the affected system. Sample of the addressed vulnerabilities: Microsoft Edge (Chromium-based) Heap Buffer

OpenSSH released a security update to fix multiple vulnerabilities affecting OpenSSH version 9.9p1 and prior. The addressed vulnerabilities could allow the remote attacker to perform denial-of-service attacks or conduct man-in-the-middle attacks and obtain sensitive information from the affected systems. 1. OpenSSH Information Disclosure Vulnerability (CVE-2025-26465): CVSS: 6.8 Attack Vector: Network Attack Complexity: High Privileges Required:

Google has released an updated Chrome version 133.0.6943.126/.127 for Windows, Mac and 133.0.6943.126 for Linux. The addressed vulnerabilities could allow the remote attacker to perform a denial of service attack or exploit heap corruption via a crafted HTML page and gain access to the affected system. Sample of the addressed vulnerabilities: Google Chrome Heap Buffer

Citrix has released security updates to address multiple vulnerabilities across several products. The addressed vulnerabilities could allow the attacker to gain elevated privileges on the affected systems. Sample of the addressed vulnerabilities: 1. NetScaler Authenticated Privilege Escalation Vulnerability (CVE-2024-12284): CVSS: 8.8 Attack Vector: Adjacent Network Attack Complexity: High Privileges Required: High User Interaction: None Consequences:

Microsoft has released an updated Microsoft Edge stable channel “133.0.3065.69” to fix multiple vulnerabilities. The addressed vulnerabilities could allow the attacker to bypass security restrictions or execute arbitrary code and gain access to the affected systems by persuading the victim to visit a specially crafted website. Sample of the addressed vulnerabilities: 1. Microsoft Edge (Chromium-based)

Google has released an updated Chrome version “133.0.6943.98/.99” for Windows and Mac and “133.0.6943.98” for Linux. The addressed vulnerabilities could allow the remote attacker to bypass security restrictions or execute arbitrary code and gain access to the affected systems by persuading the victim to visit a specially crafted website. Sample of the addressed vulnerabilities: 1.

Palo Alto has released security updatesto fix multiple vulnerabilities affecting Palo Alto PAN-OS and Palo Alto Cortex XDR. The addressed vulnerabilities could allow the attacker to bypass security restrictions, manipulate data, obtain sensitive information, execute arbitrary commands/codes, and gain access to the affected systems. Sample of the addressed vulnerabilities: 1. PAN-OS Authentication Bypass in the

Intel has released security updates to address several vulnerabilities affecting multiple Intel products. The addressed vulnerabilities could allow the attacker to gain elevated privileges, perform denial-of-service attacks, or obtain sensitive information and gain access to the affected systems. Samples of the addressed vulnerabilities: 1. Intel Graphics Software Improper Access Control Vulnerability (CVE-2024- 37355): CVSS: 8.8

Progress has released a security update to address multiple vulnerabilities affecting Progress LoadMaster.  The addressed vulnerabilities could allow the attacker to obtain sensitive information, or execute arbitrary system commands and gain access to the affected systems. Sample of the addressed vulnerabilities: 1. Progress LoadMaster Command Execution Vulnerability (CVE-2024-56131): CVSS: 8.4 Attack Vector: Adjacent Attack Complexity:

Fortinet has released security updates to fix several vulnerabilities across multiple Fortinet products. The addressed vulnerabilities could allow the attacker to gain elevated privileges, obtain sensitive information, bypass security restrictions, conduct cross-site scripting attacks, or execute arbitrary codes/commands and gain access to the affected systems. Sample of the addressed vulnerabilities: 1. FortiOS And FortiProxy Security

SAP has released security updates to address several vulnerabilities affecting multiple SAP products. SAP has released a patch that fixes several vulnerabilities affecting multiple SAP products such as SAP NetWeaver, SAP BusinessObjects Business Intelligence platform, SAP Supplier Relationship Management, SAP Approuter, SAP Enterprise Project Connection, SAP HANA, SAP Commerce and SAP Commerce Cloud, SAP GUI

Microsoft Edge has released an updated Microsoft Edge version “133.0.3065.51” to address multiple vulnerabilities. The addressed vulnerabilities could allow the attacker to bypass security restrictions, perform spoofing attacks, or execute arbitrary codes and gain access to the affected systems. Sample of the addressed vulnerabilities: 1. Microsoft Edge Code Execution Vulnerability (CVE-2025-21342): CVSS: 8.8 Attack Vector: