RSS Parrot

2025-033: Critical Vulnerabilities in Citrix NetScaler Products

https://cert.europa.eu/publications/security-advisories/2025-033/

Published: August 26, 2025 17:40

On 26 August 2025, Citrix released a security advisory addressing one critical and two high severity vulnerabilities in NetScaler ADC and NetScaler Gateway. Citrix warns that exploits of the critical vulnerability, CVE-2025-7775, have been observed on…

2025-032: Multiple Vulnerabilities in Microsoft Products

https://cert.europa.eu/publications/security-advisories/2025-032/

Published: August 18, 2025 11:18

On August 13, 2025, Microsoft released its August 2025 Patch Tuesday advisory addressing 111 security flows in various products among which 16 are rated as critical. It is recommended updating as soon as possible, prioritising public facing and critical…

2025-031: Multiple Vulnerabilities in Fortinet Products

https://cert.europa.eu/publications/security-advisories/2025-031/

Published: August 13, 2025 12:13

On August 12, 2025, Fortinet released security advisories addressing several vulnerabilities, including a critical one exploited in the wild, and two high severity ones. It is recommended updating as soon as possible.

2025-030: High Severity Vulnerability in Microsoft Exchange

https://cert.europa.eu/publications/security-advisories/2025-030/

Published: August 8, 2025 09:58

On August 6, 2025, Microsoft issued an advisory for a high-severity vulnerability affecting Microsoft Exchange hybrid environments. The vulnerability tracked as CVE-2025-53786 allows an attacker with administrative access to an on-premises Exchange Server…

2025-029: Possible Zero-Day Vulnerability in SonicWall Products

https://cert.europa.eu/publications/security-advisories/2025-029/

Published: August 5, 2025 17:17

On August 4, 2025, SonicWall issued an advisory regarding a possible zero-day vulnerability in the Gen 7 SonicWall firewalls. A remote attacker could exploit this vulnerability to execute arbitrary code on the affected appliance. This vulnerability is…

2025-028: CrushFTP zero-day exploited in the wild

https://cert.europa.eu/publications/security-advisories/2025-028/

Published: July 24, 2025 10:31

CrushFTP is warning that threat actors are actively exploiting a zero-day vulnerability tracked as CVE-2025-54309, which allows attackers to gain administrative access via the web interface on vulnerable servers. Threat actors were first detected…

2025-027: Critical Vulnerabilities in Microsoft SharePoint

https://cert.europa.eu/publications/security-advisories/2025-027/

Published: July 21, 2025 09:12

On July 19, 2025, Microsoft released an out-of-bound advisory addressing two vulnerabilities, one of which being rated as critical and allowing unauthenticated remote attacker to execute arbitrary code on vulnerable systems. This critical flaw is actively…

2025-026: Critical Vulnerabilities in VMWare Products

https://cert.europa.eu/publications/security-advisories/2025-026/

Published: July 18, 2025 14:58

On July 15, 2025, VMware released a security advisory addressing 3 critical vulnerabilities in its products that would allow an attacker to execute code on vulnerable devices. It is recommended updating affected products as soon as possible, prioritising…

2025-025: Critical Vulnerabilities in Cisco ISE

https://cert.europa.eu/publications/security-advisories/2025-025/

Published: July 18, 2025 14:57

On June 25, Cisco released an advisory addressing 2 critical vulnerabilities affecting Cisco's Identity Services Engine (ISE) product that would allow an attacker to execute arbitrary code on vulnerable devices. On July 16, Cisco updated this advisory…

2025-024: Critical Vulnerability in FortiWeb

https://cert.europa.eu/publications/security-advisories/2025-024/

Published: July 11, 2025 11:47

On July 8, 2025, Fortinet released a security advisory addressing a critical vulnerability in its FortiWeb product that would allow an attacker to execute unauthorised code or commands on the affected systems. It is recommended mitigating this…