Cyber alerts Severity Medium (1,150) Medium (1,150) Low (1,018) Low (1,018) Information only (558) Information only (558) High (78) High (78) Year 2025 (76) 2025 (76) 2024 (169) 2024 (169) 2023 (187) 2023 (187) 2022 (232) 2022 (232) 2021 (289) 2021 (289) 2020 (362) 2020 (362) 2019 (461) 2019 (461) 2018 (661) 2018 (661) 2017 (438) 2017 (438) Threat type Vulnerability (1,138) Vulnerability (1,138) Insecure software (896) Insecure software (896) Malware (740) Malware (740) Attack methodology (89) Attack methodology (89) Intelligence (6) Intelligence (6) Attack Methodology (2) Attack Methodology (2) 2,875 results Loading... January 2025 CC-4603 Medium Published Tuesday 14 January 2025 (03:22) (updated 14 January 2025) SAP Releases January 2025 Updates Updates address two critical vulnerabilities which could lead to information disclosure or privilege escalation, and fourteen others affecting multiple products CC-4602 High Published Thursday 9 January 2025 (11:30) (updated 9 January 2025) Active Exploitation of Zero-Day Vulnerability in Ivanti Connect Secure, Policy Secure, and Neurons for ZTA Gateways CVE-2025-0282 could allow an unauthenticated attacker to achieve RCE and is under active exploitation. Patches also fix CVE-2025-0283 which could be exploited to allow a local attacker to escalate their privileges. CC-4601 Medium Published Wednesday 8 January 2025 (03:20) (updated 10 January 2025) Multiple Vulnerabilities in SonicOS SonicWall releases security update to address four vulnerabilities in SonicOS CC-4600 Medium Published Tuesday 7 January 2025 (03:44) (updated 7 January 2025) Multiple Vulnerabilities in Redis Security updates fix two vulnerabilities that could lead to RCE and denial-of-service CC-4599 Medium Published Friday 3 January 2025 (02:35) (updated 3 January 2025) Proof-of-Concept Exploit Released for CVE-2024-40725 in Apache HTTP Server CVE-2024-40725 could lead to source code disclosure of local scripts running on the server CC-4598 Medium Published Friday 3 January 2025 (01:29) (updated 3 January 2025) Proof-of-Concept Exploit Released for Vulnerability CVE-2024-49113 in Microsoft Windows LDAP Security researchers have published a PoC for DoS vulnerability CVE-2024-49113 and additional information on their attempts to exploit RCE vulnerability CVE-2024-49112 December 2024 CC-4597 Medium Published Friday 27 December 2024 (11:36) (updated 27 December 2024) Palo Alto Networks Releases Security Update for PAN-OS Exploitation of CVE-2024-3393 has been reported and could lead to a denial-of-service condition on PAN-OS firewalls CC-4596 Medium Published Tuesday 24 December 2024 (11:35) (updated 24 December 2024) Apache Releases Multiple Security Updates for Tomcat Security updates addressing CVE-2024-56337 fully mitigate CVE-2024-50379 CC-4595 Medium Published Monday 23 December 2024 (02:22) (updated 23 December 2024) Sophos Releases Critical Advisory for Sophos Firewall Critical vulnerabilities could lead to SQL injection, unauthorised access, or RCE CC-4594 Medium Published Thursday 19 December 2024 (02:38) (updated 19 December 2024) Fortinet Releases Security Advisory for FortiManager and FortiManager Cloud CVE-2024-48889 could lead to remote code execution 1 2 3 4 5 6 7 8 9 10
CC-4603 Medium Published Tuesday 14 January 2025 (03:22) (updated 14 January 2025) SAP Releases January 2025 Updates Updates address two critical vulnerabilities which could lead to information disclosure or privilege escalation, and fourteen others affecting multiple products
CC-4602 High Published Thursday 9 January 2025 (11:30) (updated 9 January 2025) Active Exploitation of Zero-Day Vulnerability in Ivanti Connect Secure, Policy Secure, and Neurons for ZTA Gateways CVE-2025-0282 could allow an unauthenticated attacker to achieve RCE and is under active exploitation. Patches also fix CVE-2025-0283 which could be exploited to allow a local attacker to escalate their privileges.
CC-4601 Medium Published Wednesday 8 January 2025 (03:20) (updated 10 January 2025) Multiple Vulnerabilities in SonicOS SonicWall releases security update to address four vulnerabilities in SonicOS
CC-4600 Medium Published Tuesday 7 January 2025 (03:44) (updated 7 January 2025) Multiple Vulnerabilities in Redis Security updates fix two vulnerabilities that could lead to RCE and denial-of-service
CC-4599 Medium Published Friday 3 January 2025 (02:35) (updated 3 January 2025) Proof-of-Concept Exploit Released for CVE-2024-40725 in Apache HTTP Server CVE-2024-40725 could lead to source code disclosure of local scripts running on the server
CC-4598 Medium Published Friday 3 January 2025 (01:29) (updated 3 January 2025) Proof-of-Concept Exploit Released for Vulnerability CVE-2024-49113 in Microsoft Windows LDAP Security researchers have published a PoC for DoS vulnerability CVE-2024-49113 and additional information on their attempts to exploit RCE vulnerability CVE-2024-49112
CC-4597 Medium Published Friday 27 December 2024 (11:36) (updated 27 December 2024) Palo Alto Networks Releases Security Update for PAN-OS Exploitation of CVE-2024-3393 has been reported and could lead to a denial-of-service condition on PAN-OS firewalls
CC-4596 Medium Published Tuesday 24 December 2024 (11:35) (updated 24 December 2024) Apache Releases Multiple Security Updates for Tomcat Security updates addressing CVE-2024-56337 fully mitigate CVE-2024-50379
CC-4595 Medium Published Monday 23 December 2024 (02:22) (updated 23 December 2024) Sophos Releases Critical Advisory for Sophos Firewall Critical vulnerabilities could lead to SQL injection, unauthorised access, or RCE
CC-4594 Medium Published Thursday 19 December 2024 (02:38) (updated 19 December 2024) Fortinet Releases Security Advisory for FortiManager and FortiManager Cloud CVE-2024-48889 could lead to remote code execution