CYBER Threat Intelligence Reports
LATEST CTIs
CVE-2025-48384: Git Submodule Path Flaw Exploited in the Wild
CVE-2025-48384 is a client-side Git vulnerability that lets a malicious repository abuse a mismatch in how Git reads vs. writes configuration values containing a trailing…
Read more >

CVE-2025-43300: Apple ImageIO Zero-Day Exploited in Targeted Attacks
Apple patched CVE-2025-43300, a zero-day in the ImageIO framework used system-wide to read/write many image formats. Opening or previewing a malicious image can corrupt memory…
Read more >

CVE-2025-57790: Commvault Path Traversal Vulnerability Leads to RCE
On August 19th, Commvault published advisory CV_2025_08_2 for a newly-discovered path traversal flaw in the Web Server component that allows remote attackers to perform unauthorized…
Read more >

CVE-2025-20265: Cisco Secure Firewall Management Center (FMC) RADIUS Pre-Auth RCE
A critical (CVSS 10.0) input-handling flaw in the RADIUS authentication subsystem of Cisco Secure Firewall Management Center (FMC), tracked as CVE-2025-20265 allows unauthenticated remote code…
Read more >

Critical Unauthenticated Command Injection in Fortinet FortiSIEM (CVE-2025-25256)
Fortinet has disclosed a critical OS command injection in FortiSIEM, tracked as CVE-2025-25256, that allows unauthenticated RCE via crafted CLI requests. Fortinet confirms working exploit…
Read more >

Dutch NCSC Warns of Active Exploitation of Citrix Netscaler Vulnerability (CVE-2025-6543)
The Dutch National Cyber Security Centre (NCSC-NL) has confirmed active exploitation of CVE-2025-6543, a critical memory overflow vulnerability in Citrix NetScaler ADC and NetScaler Gateway…
Read more >
