RSS Parrot

2025-004: Critical Vulnerability in SonicWall Products

https://cert.europa.eu/publications/security-advisories/2025-004/

Published: January 28, 2025 09:36

On January 22, 2025, SonicWall issued an advisory regarding a critical vulnerability in the Appliance Management Console (AMC) and Central Management Console (CMC) of the SonicWall SMA 1000. An unauthenticated, remote attacker could exploit this…

2025-003: Critical Vulnerabilities in Fortinet Products

https://cert.europa.eu/publications/security-advisories/2025-003/

Published: January 15, 2025 14:26

On January 14, Fortinet released and updated several security advisories addressing multiple vulnerabilities ranging from low to critical severity. At least one critical vulnerability is known to be exploited in the wild. It recommended updating as soon as…

2025-002: Multiple Vulnerabilities in Microsoft Products

https://cert.europa.eu/publications/security-advisories/2025-002/

Published: January 15, 2025 14:07

On January 14, Microsoft has released its January 2025 Patch Tuesday updates, addressing a total of 159 security vulnerabilities across various products. The patches include fixes for critical and important-severity issues that could allow attackers to…

2025-001: Critical Vulnerabilities in Ivanti Products

https://cert.europa.eu/publications/security-advisories/2025-001/

Published: January 9, 2025 10:49

On January 8, 2025, Ivanti announced the release of two critical vulnerabilities affecting their products Ivanti Connect Secure and Ivanti Policy Secure and Ivanti Neurons for ZTA gateways. These vulnerabilities could lead to remote code execution and…

2024-120: Critical Vulnerabilities in Sophos Firewall

https://cert.europa.eu/publications/security-advisories/2024-120/

Published: December 20, 2024 15:46

On December 19, 2024, Sophos has released critical security updates addressing multiple vulnerabilities in its firewall products. These flaws could allow attackers to escalate privileges or execute arbitrary code.

2024-103: Critical Vulnerabilities in CUPS

https://cert.europa.eu/publications/security-advisories/2024-103/

Published: December 12, 2024 11:28

On September 26, 2024, a security researched released a blog post describing several vulnerabilities in CUPS, one of which being critical, allowing an attacker to replace existing printers' IPP URLs with a malicious one, resulting in a potential arbitrary…

2024-062: Vulnerabilities in Chrome and Chromium based Browsers

https://cert.europa.eu/publications/security-advisories/2024-062/

Published: December 12, 2024 11:28

Google has released a critical security update for its Chrome Browser, addressing six high-severity vulnerabilities that could lead to serious security issues. Chromium-based browsers are also impacted.

2024-119: Critical Vulnerability in Ivanti Products

https://cert.europa.eu/publications/security-advisories/2024-119/

Published: December 11, 2024 16:31

On December 10, 2024, Ivanti has released critical security updates addressing multiple vulnerabilities in its Cloud Services Appliance (CSA) and Connect Secure products. These flaws could allow attackers to escalate privileges or execute arbitrary code.

2024-118: Critical Vulnerability in 7-Zip

https://cert.europa.eu/publications/security-advisories/2024-118/

Published: November 25, 2024 09:34

A severe security vulnerability has been discovered in 7-Zip, the popular file compression utility, allowing remote attackers to execute malicious code through specially crafted archives. The vulnerability tracked as CVE-2024-11477 has received a high CVSS…

2024-117: Zero-Day Vulnerabilities in Palo Alto Networks PAN-OS

https://cert.europa.eu/publications/security-advisories/2024-117/

Published: November 19, 2024 10:55

Palo Alto Networks released security updates for two actively exploited zero-day vulnerabilities in Palo Alto Networks PAN-OS. If exploited, these vulnerabilities could allow a remote unauthenticated attacker to gain administrator privileges, or a PAN-OS…