Technology ❯ Cybersecurity ❯ Incident Response

Patching

Vulnerability Management CISA Recommendations Firmware Updates Security Updates Security Measures Automated Patch Management CVE-2025-10035 Palo Alto Networks Credential Hygiene BeyondTrust

Critical Cisco Unified CM SSRF Is Being Exploited

Unauthenticated requests can write files to the appliance, enabling escalation to root and urgent action by operators.

CISA Orders Immediate Fixes for Actively Exploited LiteSpeed and Joomla Plugin Flaws

Cisco Patches Exploited SD‑WAN Manager Zero‑Day

Active Exploitation of Palo Alto GlobalProtect Flaw Forces Urgent Patching

CISA Orders Rapid Fix for Actively Exploited Fortinet EMS Zero-Day

F5 Reclassifies BIG-IP APM Bug as Critical RCE as In‑the‑Wild Attacks Unfold

Trend Micro Fixes Critical Apex One Console RCE Flaws, Releases Patch for Six More Vulnerabilities

BeyondTrust Pre-Auth RCE Is Now Being Exploited in the Wild

Fortinet Begins Patching Actively Exploited FortiCloud SSO Bypass as CISA Sets Jan. 30 Deadline

CISA Flags Actively Exploited WatchGuard Firebox RCE as Patches and IoCs Roll Out

React2Shell Attacks Escalate as Microsoft Confirms Hundreds of Compromised Systems

Fortinet SSO Bypass Actively Exploited as CISA Sets Dec. 23 Fix Deadline

Fortinet Confirms Critical FortiWeb Zero-Day Is Being Exploited as CISA Sets Nov. 21 Patch Deadline

CISA Adds WatchGuard Firewall Remote Code Execution Flaw to KEV, Sets Dec. 3 Patching Deadline

Microsoft Reissues Emergency WSUS Patch as Exploits Spread and CISA Orders Federal Fix

Microsoft Links Medusa Affiliate to Exploits of Critical GoAnywhere Flaw

Critical SAP S/4HANA CVE-2025-42957 Now Exploited in the Wild

Public Exploit Chains SAP NetWeaver Flaws for Admin-Level RCE

CISA Confirms Active CitrixBleed 2 Exploitation and Mandates One-Day Patch

Critical VMware ESXi Vulnerability Exploited by Ransomware Groups