Alerts

Apache has released security updates to address multiple vulnerabilities affecting Apache HTTP Server versions before 2.4.66. The addressed vulnerabilities could allow the attacker to perform denial-ofservice attacks, bypass security restrictions, obtain sensitive information, manipulate sensitive data, or execute code and gain access to the affected system. Sample of the addressed vulnerabilities: 1. Apache HTTP Server:

Splunk has released security updates to fix several vulnerabilities across multiple Splunk products. The addressed vulnerabilities could allow the attacker to cause unvalidated redirects to malicious sites, conduct denial of service attacks, perform cross-site scripting attacks, gain elevated privileges, bypass security restrictions, and obtain sensitive information from the affected products. Sample of the addressed vulnerabilities:

Google has released an updated Chrome version “143.0.7499.40/41” for Windows, Mac, and “143.0.7499.40” for Linux. The addressed vulnerabilities could allow the attacker to conduct denial-of-service attacks, perform spoofing attacks, exploit heap corruption via a crafted HTML page, bypass security restrictions, obtain sensitive information, gain elevated privileges, or gain access to the affected systems. Sample of

HPE Aruba Networking has released security updates to address  several vulnerabilities across multiple Aruba products. The addressed vulnerabilities could allow the attacker to gain elevated privileges, perform denial-of-service attacks, conduct command injection attacks, hijack user sessions, or execute arbitrary code on the affected system. Sample of the addressed vulnerabilities: 1. Aruba AOS-CX Network Management Interface

SonicWall has released security updates to fix several vulnerabilities affecting multiple SonicWall products. The addressed vulnerabilities could allow the remote unauthenticated attacker to cause denial of service attacks, view partial users’ credential data, modify system files, gain persistent arbitrary code execution, manipulate file system paths, and cause service disruption on the affected product. Sample of

Fortinet has released security updates to fix several vulnerabilities across multiple Fortinet products. The addressed vulnerabilities could allow the attacker to gain elevated privileges, obtain sensitive information, bypass security restrictions, or execute arbitrary code or commands, and gain access to the affected systems. Sample of the addressed vulnerabilities: 1. FortiVoice SQL Injections in Voice and

Google has released an updated Chrome version 142.0.7444.175/.176 for Windows, 142.0.7444.176 for Mac, and 142.0.7444.175 for Linux. The addressed vulnerabilities could allow the remote attacker to exploit heap corruption via a crafted HTML page and gain access to the affected system. Sample of the addressed vulnerabilities: Google Chrome Type Confusion in V8 Vulnerability (CVE-2025-13223): CVSS:

Cisco has released security updates to fix several vulnerabilities affecting Cisco Catalyst Center, both virtual and hardware appliances. The addressed vulnerabilities could allow the attacker to conduct cross-site scripting attacks, perform phishing attacks, gain elevated privileges, or execute arbitrary commands in a restricted container with root privileges, and gain access to the affected product. Sample

Citrix has released security updates to address several vulnerabilities across multiple Citrix products. The addressed vulnerability could allow the attacker to perform denial of service attacks, conduct cross-site scripting attacks, or gain elevated privileges to the affected system. Sample of the addressed vulnerabilities: Citrix XenSource Xen Privilege Escalation Vulnerability (CVE-2025-58147): CVSS: 7.5 Attack Vector: Network

Google has released an updated Chrome version 142.0.7444.162/.163 for Windows, 142.0.7444.162 for Mac, and Linux. The addressed vulnerability could allow the remote attacker to execute arbitrary code and gain access to the affected system by persuading the victim to visit a specially crafted website. Google Chrome Inappropriate Implementation in V8 (CVE-2025-13042): CVSS: 8.8 Attack Vector:

Intel has released security updates to address several vulnerabilities affecting multiple Intel products. The addressed vulnerabilities could allow the attacker to gain elevated privileges, perform denial-of-service attacks, obtain sensitive information, or execute arbitrary code and gain access to the affected systems. Sample of the addressed vulnerabilities: 1. Intel Computing Improvement Program (CIP) Improper Privilege Management

Apple has released security updates to address multiple vulnerabilities across macOS Tahoe, Sequoia, Sonoma, and Safari. The addressed vulnerabilities could allow the attacker to perform denial of service attacks, corrupt memory, bypass security restrictions, obtain sensitive information, gain elevated privileges, execute arbitrary code, and gain unauthorized access to the affected system. Sample of the addressed

Zoom has released a security update to fix multiple vulnerabilities in Zoom Client for Windows, macOS, Linux, and Android. The addressed vulnerabilities could allow the attacker to conduct cross-site scripting attacks, obtain sensitive information, or gain elevated privileges to the affected system. Sample of the addressed vulnerabilities: 1. Zoom Workplace Clients-Inefficient Regular Expression Complexity Vulnerability