Veeam Backup and Replication Multiple Vulnerabilities (CVE-2025-23121, CVE-2025-24286, & CVE-2025-24287) Veeam released a security advisory to address three vulnerabilities impacting its domain-joined Backup and replication systems. Tracked as CVE-2025-23121, CVE-2025-24286,... 19/06/2025 Qualys-Threat-Protect
Microsoft Patch Tuesday, June 2025 Security Update Review Microsoft’s June 2025 Patch Tuesday has landed, addressing a new batch of critical and important vulnerabilities across Windows and enterprise... 11/06/2025 Qualys-Threat-Protect
ConnectWise ScreenConnect Command Injection Vulnerability Added to CISA KEV (CVE-2025-3935) The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned users about a high-severity vulnerability impacting ConnectWise ScreenConnect, tracked as CVE-2025-3935.... 05/06/2025 Qualys-Threat-Protect
Google Fixes Third Zero-day Vulnerability in Chrome (CVE-2025-5419) Clement Lecigne and Benoît Sevens of Google Threat Analysis Group discovered a high-severity vulnerability impacting the Chrome browser. Tracked as... 04/06/2025 Qualys-Threat-Protect
Invision Community Remote Code Execution Vulnerability (CVE-2025-47916) A critical remote code execution vulnerability (CVE-2025-47916) in the Invision Community has come to light. The vulnerability may allow attackers to... 29/05/2025 Qualys-Threat-Protect
vBulletin Remote Code Execution Vulnerabilities Exploited in the Wild (CVE-2025-48827 & CVE-2025-48828) Security researchers at Karma(In)Security discovered two unauthenticated remote code execution vulnerabilities in VBulletin, a popular commercial forum solution. Tracked as CVE-2025-48828,... 29/05/2025 Qualys-Threat-Protect
Versa Concerto Zero-day Remote Code Execution Vulnerabilities (CVE-2025-34025, CVE-2025-34026, & CVE-2025-34027) Security researchers at Project Discovery discovered two critical zero-day vulnerabilities in Versa Concerto, a popular SD-WAN and network orchestration platform.... 23/05/2025 Qualys-Threat-Protect
CISA Warns of Ivanti EPMM Unauthenticated Remote Code Execution Vulnerabilities (CVE-2025-4427 & CVE-2025-4428) Ivanti released security updates to address two high security vulnerabilities impacting its Endpoint Manager Mobile (EPMM). Tracked as CVE-2025-4427 and... 21/05/2025 Qualys-Threat-Protect
Mozilla Fixes Two Actively Exploited Zero-day Vulnerabilities in Firefox (CVE-2025-4919 & CVE-2025-4918) Mozilla released a security advisory to address two critical severity vulnerabilities in Firefox. Tracked as CVE-2025-4919 & CVE-2025-4918, the vulnerabilities... 20/05/2025 Qualys-Threat-Protect
Google Releases Fix for Zero-day Vulnerability in Chrome (CVE-2025-4664) Google released a security advisory to address a zero-day vulnerability tracked as CVE-2025-4664 CVE-2025-4664 is an insufficient policy enforcement in... 15/05/2025 Qualys-Threat-Protect
