Microsoft Patch Tuesday, May 2025 Security Update Review Microsoft’s May 2025 Patch Tuesday rolls out critical security updates, addressing multiple vulnerabilities across Windows, Office, and other key products.... 14/05/2025 Qualys-Threat-Protect
Elasticsearch Kibana Arbitrary Code Execution Vulnerability (CVE-2025-25014) Kibana released a security advisory to address a critical severity tracked as CVE-2025-25014. Successful exploitation of the prototype pollution vulnerability... 09/05/2025 Qualys-Threat-Protect
Cisco IOS XE Wireless Controller Software Arbitrary File Upload Vulnerability (CVE-2025-20188) Cisco released a security advisory to address a vulnerability in its IOS XE Wireless Controller that could enable an unauthenticated,... 09/05/2025 Qualys-Threat-Protect
FreeType Out-of-Bounds Write Vulnerability Added to CISA Known Exploited Vulnerabilities Catalog (CVE-2025-27363) Google released its May 2025 security updates for Android, addressing 45 security vulnerabilities. One of the 45 vulnerabilities is an... 07/05/2025 Qualys-Threat-Protect
CISA Warns of Actively Exploited Langflow Remote Code Execution Vulnerability (CVE-2025-3928) The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned users about a critical severity vulnerability impacting Langflow, a tool designed... 06/05/2025 Qualys-Threat-Protect
CISA Warns of Actively Exploited Brocade and Commvault Vulnerabilities (CVE-2025-1976 & CVE-2025-3928) The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned users about two high-severity vulnerabilities impacting Broadcom Brocade Fabric OS and... 30/04/2025 Qualys-Threat-Protect
SAP NetWeaver Zero-day Remote Code Execution Vulnerability (CVE-2025-31324) SAP released an out-of-band emergency update to address a remote code execution zero-day vulnerability impacting NetWeaver. Tracked a sCVE-2025-31324, the... 29/04/2025 Qualys-Threat-Protect
Commvault Command Center Remote Code Execution Vulnerability (CVE-2025-34028) A security researcher at watchTowr Labs discovered a critical vulnerability in Commvault Command Center that may allow an attacker to... 29/04/2025 Qualys-Threat-Protect
Erlang/OTP SSH Server Remote Code Execution Vulnerability (CVE-2025-32433) Security researchers at Ruhr University Bochum discovered a security vulnerability in the Erlang/Open Telecom Platform (OTP) SSH implementation. Tracked as... 22/04/2025 Qualys-Threat-Protect
Apple Releases Fixes for iOS Zero-day Vulnerabilities (CVE-2025-31200 & CVE-2025-31201) Apple and Google Threat Analysis Group discovered two security vulnerabilities impacting iOS devices. Tracked as CVE-2025-31200 and CVE-2025-31201, the vulnerabilities could... 22/04/2025 Qualys-Threat-Protect
