CYBER Threat Intelligence Reports
LATEST CTIs
CVE-2025-33073: Windows SMB Client Improper Access Control Added to CISA’s KEV
CVE-2025-33073 is a high-severity vulnerability in the Windows SMB client that enables an authenticated remote attacker to escalate privileges to NT AUTHORITY\SYSTEM by abusing a…
Read more >
F5 Breach: Source Code & Vulnerabilities Stolen by Nation-State Actor
In August 2025, U.S. cybersecurity vendor F5 Networks uncovered a long-term intrusion by a nation-state-linked threat actor that compromised its BIG-IP product development and engineering…
Read more >
CVE-2025-41244: Chinese Threat Actors Actively Exploiting VMware Tools & Aria Vulnerability
CVE-2025-41244 (CVSS 7.8) is a local privilege escalation vulnerability in VMware Tools and VMware Aria Operations when the Service Discovery Management Pack (SDMP) is enabled.…
Read more >
CVE-2025-32463: Critical Sudo Privilege Escalation
CVE-2025-32463 is a critical local privilege escalation in the ubiquitous sudo utility. The bug allows a local user to escalate to root by abusing sudo’s…
Read more >
Cisco IOS and IOS XE SNMP Zero-Day Actively Exploited (CVE-2025-20352)
Cisco disclosed CVE-2025-20352, a stack overflow in the SNMP subsystem of IOS and IOS XE, now confirmed as actively exploited in the wild. Attackers can…
Read more >
SolarWinds Web Help Desk (WHD) Unauthenticated RCE Patch-Bypass (CVE-2025-26399)
SolarWinds released Web Help Desk 12.8.7 Hotfix 1 to fix CVE-2025-26399, an unauthenticated remote code execution flaw in the AjaxProxy component caused by unsafe deserialization.…
Read more >
