Threat Newsletter Week 37-38
Microsoft Fixes 80 Flaws — Including SMB PrivEsc and Azure CVSS 10.0 Bugs Microsoft on Tuesday addressed a set of 80 security flaws in its …
Microsoft Fixes 80 Flaws — Including SMB PrivEsc and Azure CVSS 10.0 Bugs Microsoft on Tuesday addressed a set of 80 security flaws in its …
CISA Flags TP-Link Router Flaws CVE-2023-50224 and CVE-2025-9377 as Actively Exploited The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added two security flaws …
Apple Patches CVE-2025-43300 Zero-Day in iOS, iPadOS, and macOS Exploited in Targeted Attacks Apple has released security updates to address a security flaw impacting iOS, …
Microsoft August 2025 Patch Tuesday Fixes Kerberos Zero-Day Among 111 Total New Flaws Microsoft on Tuesday rolled out fixes for a massive set of 111 …
Apple Patches Safari Vulnerability Also Exploited as Zero-Day in Google Chrome Apple on Tuesday released security updates for its entire software portfolio, including a fix …
Max severity Cisco ISE bug allows pre-auth command execution, patch now A critical vulnerability (CVE-2025-20337) in Cisco’s Identity Services Engine (ISE) could be exploited to …
Critical Cisco Vulnerability in Unified CM Grants Root Access via Static Credentials Cisco has released security updates to address a maximum-severity security flaw in Unified …
Microsoft Patches 67 Vulnerabilities Including WEBDAV Zero-Day Exploited in the Wild Microsoft has released patches to fix 67 security flaws, including one zero-day bug in …
Critical Cisco ISE Auth Bypass Flaw Impacts Cloud Deployments on AWS, Azure, and OCI Cisco has released security patches to address a critical security flaw …
Critical Windows Server 2025 dMSA Vulnerability Enables Active Directory Compromise A privilege escalation flaw has been demonstrated in Windows Server 2025 that makes it possible …