CYBER Threat Intelligence Reports
LATEST CTIs
CVE-2025-43300: Apple ImageIO Zero-Day Exploited in Targeted Attacks
Apple patched CVE-2025-43300, a zero-day in the ImageIO framework used system-wide to read/write many image formats. Opening or previewing a malicious image can corrupt memory…
Read more >
CVE-2025-57790: Commvault Path Traversal Vulnerability Leads to RCE
On August 19th, Commvault published advisory CV_2025_08_2 for a newly-discovered path traversal flaw in the Web Server component that allows remote attackers to perform unauthorized…
Read more >
CVE-2025-20265: Cisco Secure Firewall Management Center (FMC) RADIUS Pre-Auth RCE
A critical (CVSS 10.0) input-handling flaw in the RADIUS authentication subsystem of Cisco Secure Firewall Management Center (FMC), tracked as CVE-2025-20265 allows unauthenticated remote code…
Read more >
Critical Unauthenticated Command Injection in Fortinet FortiSIEM (CVE-2025-25256)
Fortinet has disclosed a critical OS command injection in FortiSIEM, tracked as CVE-2025-25256, that allows unauthenticated RCE via crafted CLI requests. Fortinet confirms working exploit…
Read more >
Dutch NCSC Warns of Active Exploitation of Citrix Netscaler Vulnerability (CVE-2025-6543)
The Dutch National Cyber Security Centre (NCSC-NL) has confirmed active exploitation of CVE-2025-6543, a critical memory overflow vulnerability in Citrix NetScaler ADC and NetScaler Gateway…
Read more >
“ReVault” Firmware Vulnerabilities in Dell ControlVault3 Enable Persistent Backdoors and Windows Login Bypass
Cisco Talos has disclosed five critical vulnerabilities, collectively dubbed “ReVault”, affecting the firmware of Dell’s ControlVault3 and ControlVault3+ hardware security modules, as well as their…
Read more >
