Alerts Archives - Page 7 of 46

SonicWall Security Update – 23 January 2025

SonicWall has released a security update to fix a critical vulnerability in SonicWall SMA1000 Appliance Management Console (AMC) and Central Management Console (CMC) version 12.4.3-02804 and earlier versions. The addressed vulnerability could allow the remote unauthenticated attacker to execute arbitrary OS commands and gain unauthorized access to the affected systems. SonicWALL SMA1000 Pre-Authentication Remote Command […]

SonicWall Security Update – 23 January 2025 Read More »

Oracle Security Patch Update – 22 January 2025

Alerts, Announcements

Oracle released its critical patch updates for January 2025, containing (318) new security patches for multiple affected products in Oracle code and third-party components. The addressed vulnerabilities could allow the attacker to perform various attacks such as obtaining sensitive information, gaining elevated privileges, conducting denial of service attacks, performing data manipulation (update, insert, or delete

Oracle Security Patch Update – 22 January 2025 Read More »

Aruba Security Updates – 21 January 2025

Alerts

Aruba has released security updatesto fix several vulnerabilities affecting multiple Aruba products. The addressed vulnerabilities could allow the attacker to manipulate data to view, add, modify, delete, or execute arbitrary commands/codes and gain access to the affected systems. Sample of the addressed vulnerabilities: 1. HPE Aruba Authenticated Remote Code Execution in AOS Web-based Management Interface

Aruba Security Updates – 21 January 2025 Read More »

Microsoft Edge Security Update – 19 January 2025

Alerts

Microsoft has released an updated version of Microsoft Edge “132.0.2957.115” and a version of Microsoft Edge Update Setup “1.3.195.43” to address multiple vulnerabilities. The addressed vulnerabilities could allow the remote attacker to perform spoofing attacks, obtain sensitive information, gain elevated privileges, or gain access to the affected systems. Sample of the addressed vulnerabilities: 1. Microsoft

Microsoft Edge Security Update – 19 January 2025 Read More »

Google Chrome Security Update – 16 January 2025

Alerts

Google has released an updated Chrome version “132.0.6834.83/84” for Windows and Mac and “132.0.6834.83” for Linux. The addressed vulnerabilities could allow the remote attacker to perform spoofing attacks, obtain sensitive information, gain elevated privileges, or gain access to the affected systems. Sample of the addressed vulnerabilities: 1. Google Chrome Privilege Escalation Vulnerability (CVE-2025-0443): CVSS: 8.8

Google Chrome Security Update – 16 January 2025 Read More »

Zoom Security Updates – 15 January 2025

Alerts

Zoom has released security updates to fix several vulnerabilities across multiple Zoom products. obtain sensitive information, or perform denial-of-service attacks on the affected systems. Sample of the addressed Vulnerabilities: 1. Zoom Apps Privilege Escalation Vulnerability (CVE-2025-0147): CVSS: 8.8 Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Consequences: Gain Privileges 2. Zoom

Zoom Security Updates – 15 January 2025 Read More »

Ivanti Security Updates – 15 January 2025

Alerts, Announcements

Ivanti has released security updates to fix several vulnerabilities across multiple Ivanti products. The addressed vulnerabilities could allow the attacker to escalate elevated privileges, perform denial of service attacks, bypass security restrictions, obtain sensitive information, or execute arbitrary code and gain access to the affected systems. Sample of the addressed vulnerabilities: 1. Ivanti EPM Path

Ivanti Security Updates – 15 January 2025 Read More »

Fortinet Security Updates – 15 January 2025

Alerts, Announcements

Fortinet has released security updates to fix several vulnerabilities across multiple Fortinet products. The addressed vulnerabilities could allow the attacker to gain elevated privileges, obtain sensitive information, perform denial of services attacks, manipulate files, conduct SQL injection attacks, bypass security restrictions, perform cross-site scripting attacks, or execute arbitrary code and gain access to the affected

Fortinet Security Updates – 15 January 2025 Read More »

Microsoft January 2025 Patch Tuesday

Alerts, Announcements

Microsoft has released its monthly patch of security updates, known as Patch Tuesday. The mentioned patch addressed eight zero-day vulnerabilities with three actively exploited in attacks. Microsoft has fixed (161) vulnerabilities, with (3) classified as critical as they could allow the attacker to conduct spoofing attacks, perform denial of service attacks, gain elevated privileges, obtain

Microsoft January 2025 Patch Tuesday Read More »

SAP January 2025 Security Patch Day

Alerts, Announcements

SAP has released security updates to address several vulnerabilities affecting multiple products. SAP has released a patch that fixes several vulnerabilities affecting multiple SAP products such SAP NetWeaver ABAP and ABAP Platform, SAP NetWeaver AS for ABAP and ABAP Platform, SAP BusinessObjects Business Intelligence Platform, SAPSetup, SAP Business Workflow, SAP Flexible Workflow, SAP NetWeaver Application

SAP January 2025 Security Patch Day Read More »

Aruba Security Updates – 09 January 2025

Alerts

Aruba has released security updates to fix multiple vulnerabilities affecting Aruba Networking 501 Wireless Client and Aruba CX 10000 Switch Series. The addressed vulnerabilities could allow the attacker to bypass security restrictions or execute arbitrary commands and gain access to the affected products. Sample of the addressed vulnerabilities: HPE Aruba Networking 501 Wireless Client Bridge

Aruba Security Updates – 09 January 2025 Read More »

Juniper Security Updates – 09 January 2025

Alerts

Juniper has released security updates to fix several vulnerabilities affecting multiple Juniper Networks products. The addressed vulnerabilities could allow the attacker to obtain sensitive information or perform denial of service attacks to the affected products. Sample of the addressed vulnerabilities: 1. Juniper Networks Junos OS and Junos OS Evolved Denial of Service Vulnerability (CVE-2025-21599): CVSS:

Juniper Security Updates – 09 January 2025 Read More »

Mozilla FireFox Security Updates – 09 January 2025

Alerts

Mozilla has released an updated Firefox version 134, Firefox ESR versions 128.6, and 115.19 to fix multiple vulnerabilities. The addressed vulnerabilities could allow the attacker to perform spoofing attacks, gain elevated privileges, bypass security restrictions or execute arbitrary code and gain access to the affected system. Sample of the addressed vulnerabilities: 1. Mozilla Firefox Memory

Mozilla FireFox Security Updates – 09 January 2025 Read More »

Ivanti Security Updates – 09 January 2025

Alerts, Announcements

Ivanti has released security updates to fix two vulnerabilities across multiple versions of Ivanti Connect Secure, Policy Secure, and ZTA Gateways. The addressed vulnerabilities could allow the attacker to gain elevated privileges or execute arbitrary code and gain access to the affected system. The addressed vulnerabilities: 1. Ivanti Connect Secure Remote Code Execution (CVE-2025-0282): CVSS:

Ivanti Security Updates – 09 January 2025 Read More »

Google Chrome Security Update – 08 January 2025

Alerts

Google has released an updated Chrome version “131.0.6778.264/.265” for Windows and Mac and “131.0.6778.264” for Linux. The addressed vulnerability could allow the remote attacker to execute arbitrary code to gain access to the affected system by persuading the victim to visit a specially crafted website. Google Chrome Code Execution Vulnerability (CVE-2025-0291): CVSS: 8.8 Attack Vector:

Google Chrome Security Update – 08 January 2025 Read More »

SonicWall Security Updates – 08 January 2025

Alerts

SonicWall has released security updates to fix multiple vulnerabilities affecting SonicOS and SonicWALL SSL-VPN. The addressed vulnerabilities could allow the attacker to perform denial of service attacks, obtain sensitive information, gain elevated privileges, conduct server-side request forgery attacks, or execute arbitrary code and gain access to the affected systems. Sample of the addressed vulnerabilities: 1.

SonicWall Security Updates – 08 January 2025 Read More »

Palo Alto Security Update – 29 December 2024

Alerts

Palo Alto has released a security update to fix a vulnerability affecting Palo Alto PAN-OS software. The addressed vulnerability could allow the remote attacker to perform denial of service attacks caused by sending a malicious packet through the data plane of the firewall that reboots the firewall, also repeated attempts to trigger this condition will

Palo Alto Security Update – 29 December 2024 Read More »

Apache Tomcat Security Updates – 24 December 2024

Alerts

Apache has released security updates to address a vulnerability affecting multiple versions of Apache Tomcat. The addressed vulnerability could allow the remote attacker to execute arbitrary code, bypass intended file system access controls, and gain access to the affected systems. Apache Tomcat Code Execution Vulnerability (CVE-2024-56337): CVSS: 8.1 Attack Vector: Network Attack Complexity: High Privileges

Apache Tomcat Security Updates – 24 December 2024 Read More »

Adobe ColdFusion Security Update – 24 December 2024

Alerts

Adobe has released a security update to fix a vulnerability in Adobe ColdFusion versions 2023.11 and 2021.17. The addressed vulnerability could allow the remote attacker to access files or directories outside the restricted directory set by the application. This could lead to the disclosure of sensitive information or the manipulation of system data. Adobe ColdFusion

Adobe ColdFusion Security Update – 24 December 2024 Read More »

Sophos Security Update – 22 December 2024

Alerts, Announcements

Sophos has released security updates to fix multiple vulnerabilities in Sophos firewall versions 21.0 GA (21.0.0) and older. The severity of the addressed vulnerability could allow the remote attacker to execute remote code and gain access to the affected versions. 1. Sophos firewall pre-auth SQL injection vulnerability (CVE-2024-12727): CVSS: 9.8 Attack Vector: Network Attack Complexity:

Sophos Security Update – 22 December 2024 Read More »

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.