CYBER Threat Intelligence Reports
LATEST CTIs
CISA: Fortinet Security Advisories and CVE-2024-21762, CVE-2024-23313 Exploitation
Fortinet has issued updates for critical FortiOS vulnerabilities, CVE-2024-21762 and CVE-2024-23313, with the former actively exploited and the latter presenting a potential high-risk threat. Immediate…
Read more >
New Patch Bypasses for Critical FortiSIEM Vulnerability (CVE-2024-23108, CVE-2024-23109)
Fortinet clarifies CVE-2024-23108 and CVE-2024-23109 as patch bypasses for the critical FortiSIEM flaw CVE-2023-34992, enabling remote command execution. Fixes are promised in upcoming FortiSIEM releases,…
Read more >
Critical Shim Boot Loader Vulnerability Affects Linux Distributions (CVE-2023-40547)
CVE-2023-40547 poses a critical threat to Linux distributions with a CVSS score of 9.8, enabling Secure Boot bypass and potential remote code execution. Discovered by…
Read more >
Critical Vulnerabilities in Cisco Expressway Series
Cisco has patched critical CSRF vulnerabilities in its Expressway Series, CVE-2024-20252 and CVE-2024-20254, and a third vulnerability, CVE-2024-20255, affecting system configurations and causing DoS. Organizations…
Read more >
New Vulnerabilities in Azure HDInsight Services
New vulnerabilities in Azure HDInsight services, including privilege escalation and denial-of-service risks, have been patched by Microsoft. Key issues involve Apache Oozie, Ambari, Hadoop, Kafka,…
Read more >
Mass Exploitation of SSRF Flaw in Ivanti VPN Products (CVE-2024-21893)
The SSRF vulnerability CVE-2024-21893 in Ivanti VPN products has led to widespread exploitation, exposing severe security risks. Despite an initial fix, vulnerabilities persisted, prompting Ivanti…
Read more >
