Security Advisories
-
2025-003: Critical Vulnerabilities in Fortinet Products
Wednesday, January 15, 2025 02:26:10 PM CETOn January 14, Fortinet released and updated several security advisories addressing multiple vulnerabilities ranging from low to critical severity. At least one critical vulnerability is known to be exploited in the wild.
It recommended updating as soon as possible, and if not possible, at least applying mitigations.
-
2025-002: Multiple Vulnerabilities in Microsoft Products
Wednesday, January 15, 2025 02:07:02 PM CETOn January 14, Microsoft has released its January 2025 Patch Tuesday updates, addressing a total of 159 security vulnerabilities across various products. The patches include fixes for critical and important-severity issues that could allow attackers to gain unauthorised access, execute arbitrary code, or elevate privileges. Three vulnerabilities were already being exploited in attacks.
-
2025-001: Critical Vulnerabilities in Ivanti Products
Friday, January 10, 2025 04:09:36 PM CETOn January 8, 2025, Ivanti announced the release of two critical vulnerabilities affecting their products Ivanti Connect Secure and Ivanti Policy Secure and Ivanti Neurons for ZTA gateways. These vulnerabilities could lead to remote code execution and privilege escalation.
[New] Ivanti's security advisory indicates that CVE-2025-0282 was being exploited on a limited number of Ivanti Connect Secure appliances at the time of disclosure.
It is strongly recommended updating affected devices as soon as possible.