Cyber alerts

2,997 results

October 2025

Published Tuesday 14 October 2025 (02:07) (updated 14 October 2025)

Veeam Releases Security Updates for Backup & Replication and Windows Agent

Security bulletin addresses critical severity vulnerabilities that could allow for remote code execution and privilege escalation

CC-4706 High

Published Monday 13 October 2025 (02:34) (updated 16 October 2025)

Oracle Releases Security Advisory to address CVE-2025-61884 affecting E-Business Suite

Oracle has released an out-of-band security update addressing CVE-2025-61884, which, if successfully exploited, could lead to unauthenticated information disclosure

CC-4705 High

Published Monday 6 October 2025 (12:00) (updated 6 October 2025)

Oracle Releases Security Advisory for E-Business Suite

Oracle has reported exploitation of CVE-2025-61882 in the wild as a zero-day vulnerability which, if successfully exploited, could allow unauthenticated remote code execution on affected E-Business Suite appliances

September 2025

CC-4704 Medium

Published Tuesday 30 September 2025 (02:33) (updated 30 September 2025)

Broadcom Releases Security Updates for VMware Aria Operations, Tools, and Cloud Foundation

Security advisory addresses two high severity and one medium severity vulnerabilities that could result in privilege escalation and disclosure of user credentials in VMware Aria Operations, Tools, and Cloud Foundation

CC-4703 High

Published Friday 26 September 2025 (11:30) (updated 26 September 2025)

Active campaign targeting vulnerabilities in Cisco VPN devices

Attacker attributed to ArcaneDoor campaign (CC-4483) has exploited CVE-2025-20333, CVE-2025-20362, and CVE-2025-20363 to install a sophisticated bootkit for persistent stealthy access to affected devices

CC-4702 High

Published Thursday 25 September 2025 (11:59) (updated 25 September 2025)

Active Exploitation of Zero-Day Vulnerability CVE-2025-20352 in Cisco IOS and IOS XE

Cisco has released a security advisory to address exploited vulnerability CVE-2025-20352 that could lead to remote code execution or a denial-of-service condition

CC-4701 Medium

Published Monday 22 September 2025 (02:48) (updated 26 September 2025)

Fortra Releases Security Update for GoAnywhere MFT

Security update addresses a critical severity vulnerability in Fortra's GoAnywhere MFT License Servlet

CC-4700 Medium

Published Thursday 18 September 2025 (01:26) (updated 18 September 2025)

Google Releases Security Update for Chrome

Security update addresses an exploited high severity vulnerability in Google Chrome

CC-4699 Medium

Published Wednesday 10 September 2025 (11:11) (updated 10 September 2025)

Ivanti Releases September 2025 Security Updates

Updates address vulnerabilities in Connect Secure, Policy Secure, ZTA Gateways, and Neurons for Secure Access

CC-4698 Medium

Published Wednesday 10 September 2025 (10:13) (updated 10 September 2025)

Microsoft Releases September 2025 Security Updates

Scheduled updates for Microsoft products address 81 vulnerabilities, of which two have been reported as publicly disclosed