Contact us
Cloud platform
  • Cyber Threat Intelligence, SEK Security Advisory

Privilege Escalation Vulnerability in Cisco Catalyst Center Virtual Appliance

CVE-2025-20341 (CVSS 8.8) allows low-privileged authenticated users to escalate to Administrator through crafted HTTP requests. No workarounds exist, and Cisco urges immediate upgrade to version 2.3.7.10-VA.

READ MORE
  • Cyber Threat Intelligence, SEK Security Advisory

Critical Vulnerability in Fortinet FortiWeb

CVE-2025-64446 (CVSS 9.1) allows unauthenticated attackers to run administrative commands through a path traversal flaw, is actively exploited in the wild, and requires urgent patching of vulnerable FortiWeb appliances.

READ MORE
  • Cyber Threat Intelligence, SEK Security Advisory

Denial-of-service vulnerability in Palo Alto Networks PAN-OS

CVE-2025-4619 allows remote firewall reboot through crafted packets, leading to downtime and requiring immediate patching.

READ MORE
  • Cyber Threat Intelligence, SEK Security Advisory

Microsoft fixes 63 vulnerabilities in the Patch Tuesday, including an actively exploited zero-day

The November 2025 update addresses severe Windows flaws, including a kernel zero-day already used in real-world attacks

READ MORE
  • Cyber Threat Intelligence, SEK Security Advisory

SAP fixes critical vulnerabilities in the November Patch Day

The November 2025 update addresses severe flaws enabling remote code execution and full system compromise

READ MORE
  • Cyber Threat Intelligence, SEK Security Advisory

Critical Vulnerability in React Native CLI

A critical flaw (CVE-2025-11953) in the @react-native-community/cli package allows remote code execution via the Metro server. Immediate update to version 20.0.0 is required.

READ MORE
  • Cyber Threat Intelligence, SEK Security Advisory

Critical Vulnerability in WordPress Post SMTP Plugin

A critical flaw (CVE-2025-11833) allows unauthenticated attackers to access email logs and hijack admin accounts. Immediate update to version 3.6.1 is strongly advised.

READ MORE
  • Cyber Threat Intelligence, SEK Security Advisory

Critical vulnerabilities affect Cisco UCCX and Cisco ISE

Cisco disclosed critical flaws enabling remote code execution and denial of service in UCCX and ISE systems.

READ MORE
  • Cyber Threat Intelligence, Notificação de Vulnerabilidades OT/ICS

Monthly VNA OT-ICS – October/2025

The report highlights critical vulnerabilities in industrial and operational technology systems, emphasizing the need for immediate updates and continuous security practices.

READ MORE
Contact us
Cloud Platform
Linkedin Youtube
Privacy Overview
SEK

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.

Strictly Necessary Cookies

Strictly Necessary Cookie should be enabled at all times so that we can save your preferences for cookie settings.

Analytics

This website uses Google Analytics to collect anonymous information such as the number of visitors to the site, and the most popular pages.

Keeping this cookie enabled helps us to improve our website.

Marketing

This website uses the following additional cookies:

(List the cookies that you are using on the website here.)