CYBER Threat Intelligence Reports
LATEST CTIs
WatchGuard Firebox RCE Actively Exploited in the Wild: CVE-2025-14733
WatchGuard has disclosed a critical remote code execution (RCE) vulnerability affecting Firebox firewall appliances running the Fireware operating system. The vulnerability, tracked as CVE-2025-14733, is…
Read more >
SonicWall SMA 1000 Privilege Escalation: CVE-2025-40602
Threat actors are actively exploiting a privilege escalation vulnerability affecting SonicWall Secure Mobile Access (SMA) 1000 series appliances. The vulnerability, tracked as CVE-2025-40602, stems from…
Read more >
Active Exploitation of Fortinet FortiCloud SSO Authentication Bypass (CVE-2025-59718 & CVE-2025-59719)
Threat actors are actively exploiting two critical authentication bypass vulnerabilities in Fortinet products by abusing FortiCloud SSO functionality. The flaws, tracked as CVE-2025-59718 & CVE-2025-59719…
Read more >
Apple WebKit Zero-Day Exploited in Targeted Attacks (CVE-2025-14174)
Apple has released emergency security updates to address CVE-2025-14174, a zero-day vulnerability in WebKit that has been actively exploited in the wild as part of…
Read more >
React2Shell (CVE-2025-55182): Critical React RCE With Active China-Linked Exploitation
CVE-2025-55182, also known as React2Shell, is a critical unauthenticated remote-code-execution vulnerability in React Server Components (RSC) that allows attackers to execute arbitrary code on the…
Read more >
Google Chrome Zero-Day Actively Exploited: CVE-2025-13223
A new high-severity zero-day in Google Chrome is being actively exploited to compromise users through malicious websites. The vulnerability, tracked as CVE-2025-13223, is a type…
Read more >
