Alerts

Palo Alto has released security updates to fix several vulnerabilities affecting multiple Palo Alto products. The addressed vulnerabilities could allow the attacker to perform denial of service attacks, bypass security restrictions, expose user credentials, obtain sensitive information, escalate privileges, execute arbitrary commands, and gain access to the affected product. Sample of the addressed vulnerabilities: 1. […]

Microsoft has released its monthly patch of security updates, known as Patch Tuesday. The mentioned patch addressed one actively exploited and two publicly disclosed zero-day vulnerabilities. Microsoft has fixed (112) vulnerabilities that could allow the attacker to gain elevated privileges, perform denial of service attacks, obtain sensitive information, bypass security restrictions, or execute arbitrary code

Google has released an updated Chrome version 143.0.7499.192/.193 for Windows and Mac, and version 143.0.7499.192 for Linux. The addressed vulnerability could allow the remote attacker to convince the victim to install a malicious extension to inject scripts or HTML into a privileged page via the crafted Chrome Extension. Google Chrome Insufficient Policy Enforcement in the

F5 has released a security update to address a vulnerability affecting NGINX Ingress Controller version 5.3.0. he addressed vulnerability could allow the attacker to perform denial of service attacks, obtain sensitive information, or gain elevated privileges on the affected product. NGINX Ingress Controller Path Traversal Vulnerability (CVE-2025-14727): CVSS: 8.3 Attack Vector: Network Attack Complexity: Low

Apple has released security updates to address multiple vulnerabilities across macOS Sequoia, Tahoe, Sonoma, Ventura, and Safari. The addressed vulnerabilities could allow the attacker to perform denial of service attacks, corrupt memory, bypass security restrictions, perform spoofing attacks, obtain sensitive information, gain elevated privileges, execute arbitrary code, and gain unauthorized access to the affected system.

SonicWall has released a security update to fix a vulnerability affecting SonicWall SMA 100 series appliances. The addressed vulnerability could allow the local attacker to bypass authorization mechanisms and gain elevated privileges. SonicWall SMA 100 Local Privilege Escalation Vulnerability (CVE-2025-40602): CVSS: 6.6 Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Consequences:

Microsoft has released an updated version of Microsoft Edge in the stable channel, “143.0.3650.80” to address multiple vulnerabilities. The addressed vulnerabilities could allow the attacker to conduct denial-of-service attacks, perform spoofing attacks, bypass security restrictions, obtain sensitive information, gain elevated privileges, or gain access to the affected systems. Sample of the addressed vulnerabilities: Microsoft Edge

Google has released an updated Chrome version 143.0.7499.109/.110 for Windows and Mac, and version 143.0.7499.109 for Linux. The addressed vulnerabilities could allow the attacker to bypass security restrictions or execute arbitrary code and gain access to the affected system by persuading the victim to visit a specially crafted website. Sample of the addressed vulnerabilities: Google

Mozilla has released an updated Firefox version 146, Firefox ESR versions 115.31, and 140.6 to fix multiple vulnerabilities. The addressed vulnerabilities could allow the attacker to bypass security restrictions, gain elevated privileges, corrupt memory, and gain access to the affected system by persuading the victim to visit a specially crafted website. Sample of the addressed

Zoom has released a security update to fix multiple vulnerabilities in Zoom Rooms for Windows and macOS. The addressed vulnerabilities could allow the attacker to gain elevated privileges or obtain sensitive information on the affected systems. The addressed vulnerabilities: 1. Zoom Rooms for Windows – Software Downgrade Protection Mechanism Failure (CVE-2025-67460): CVSS: 7.8 Attack Vector:

Microsoft has released its monthly patch of security updates, known as Patch Tuesday. The mentioned patch addressed one actively exploited and two publicly disclosed zero-day vulnerabilities. Microsoft has fixed (57) vulnerabilities that could allow the attacker to gain elevated privileges, perform denial of service attacks, obtain sensitive information, or execute arbitrary code and gain access