● Live advisory feed
Security Advisory Fusion for CSIRTs, SOCs & Defenders
Security advisories from 24 sources — CISA, CERT-EU, NCSC-UK, BSI, CERT-FR, NCSC-NL, JPCERT/CC, JVN, HKCERT, the Canadian Cyber Centre, NVD, GitHub, Microsoft, Cisco, Fortinet, Palo Alto Networks and more — normalized, translated to English and flagged against the CISA KEV catalog. One global feed for CSIRTs, SOCs and defenders.
Multiple vulnerabilities have been discovered in the Ubuntu Linux kernel. Some of them allow an attacker to cause privilege escalation, data confidentiality breaches, and security policy bypass.
Multiple vulnerabilities have been discovered in Progress MOVEit Transfer. Some of them allow an attacker to cause privilege escalation, data confidentiality breaches, and remote indirect code injection (XSS).
A vulnerability has been discovered in NetApp ONTAP 9. It allows an attacker to cause remote denial of service and data integrity breaches.
Multiple vulnerabilities have been discovered in the Red Hat Linux kernel. Some of them allow an attacker to cause remote arbitrary code execution, privilege escalation, and remote denial of service.
A vulnerability has been discovered in CPython. It allows an attacker to cause remote denial of service.
Multiple vulnerabilities have been discovered in Suricata. They allow an attacker to cause an unspecified security issue by the vendor.
Multiple vulnerabilities have been discovered in Siemens products. Some of them allow an attacker to cause arbitrary code execution, privilege escalation, and remote denial of service.
Multiple vulnerabilities have been discovered in the Debian LTS Linux kernel. Some of them allow an attacker to cause privilege escalation, data confidentiality breaches, and denial of service.
Multiple vulnerabilities have been discovered in the SUSE Linux kernel. Some of them allow an attacker to cause data confidentiality breaches, data integrity breaches, and security policy bypass.
Multiple vulnerabilities have been discovered in IBM products. Some of them allow an attacker to cause remote denial of service, data confidentiality breaches, and server-side request forgery (SSRF).
Multiple vulnerabilities have been discovered in Microsoft Azure Linux. They allow an attacker to cause an unspecified security issue by the vendor.
Multiple vulnerabilities have been discovered in Traefik. They allow an attacker to cause a security policy bypass.
Multiple vulnerabilities have been discovered in Palo Alto Networks products. Some of them allow an attacker to cause remote arbitrary code execution, privilege escalation, and a remote denial of service.
Multiple vulnerabilities have been discovered in Wireshark. They allow an attacker to cause a remote denial of service and a breach of data confidentiality.
A vulnerability has been discovered in Microsoft Edge. It allows an attacker to cause a security policy bypass.
Multiple vulnerabilities have been discovered in Google Chrome. They allow an attacker to cause an unspecified security issue.
Multiple vulnerabilities have been discovered in GitLab. Some of them allow an attacker to cause a breach of data confidentiality, an indirect remote code injection (XSS), and a security policy bypass.
Multiple vulnerabilities have been discovered in Juniper Networks products. Some of them allow an attacker to cause arbitrary code execution, a remote denial of service, and a breach of data confidentiality.
Multiple vulnerabilities have been discovered in Microsoft Azure Linux. They allow an attacker to cause an unspecified security issue.
Multiple vulnerabilities have been discovered in Joomla!. Some of them allow an attacker to cause data confidentiality breaches, data integrity breaches, and remote indirect code injection (XSS).
Multiple vulnerabilities have been discovered in HPE Aruba Networking products. They allow an attacker to cause remote denial of service, data confidentiality breaches, and security policy bypass.
Multiple vulnerabilities have been discovered in Foxit products. Some of them allow an attacker to cause remote arbitrary code execution, privilege escalation, and data confidentiality breaches.
Multiple vulnerabilities have been discovered in Postfix. They allow an attacker to cause a denial of service and an unspecified security issue by the vendor.
Multiple vulnerabilities have been discovered in PHP. They allow an attacker to cause an unspecified security issue by the vendor.
A vulnerability has been discovered in Mozilla Firefox for iOS. It allows an attacker to bypass the security policy.
Multiple vulnerabilities have been discovered in Microsoft Azure Linux. They allow an attacker to cause an unspecified security issue by the vendor.
Multiple vulnerabilities have been discovered in SPIP. Some of them allow an attacker to cause a breach of data confidentiality, a SQL injection (SQLi), and a remote indirect code injection (XSS).
Multiple vulnerabilities have been discovered in Microsoft Edge. Some of them allow an attacker to cause remote arbitrary code execution, privilege escalation, and a breach of data confidentiality.
A vulnerability has been discovered in Synacor Zimbra Collaboration. It allows an attacker to cause a remote indirect code injection (XSS).
Multiple vulnerabilities have been discovered in OpenSSH. Some of them allow an attacker to bypass security policy, cause a denial of service, and an unspecified security issue by the vendor.
Multiple vulnerabilities have been discovered in Roundcube. Some of them allow an attacker to cause a remote denial of service, server-side request forgery (SSRF), and indirect remote code injection (XSS).
A vulnerability has been discovered in PostgreSQL JDBC. It allows an attacker to bypass security policy.
A vulnerability has been discovered in FreeBSD. It allows an attacker to cause a breach of data confidentiality.
Multiple vulnerabilities have been discovered in the Ubuntu Linux kernel. Some of them allow an attacker to cause arbitrary code execution, privilege escalation, and a remote denial of service.
Multiple vulnerabilities have been discovered in the Red Hat Linux kernel. Some of them allow an attacker to cause remote arbitrary code execution, privilege escalation, and a remote denial of service.
Multiple vulnerabilities have been discovered in the SUSE Linux kernel. Some of them allow an attacker to cause privilege escalation, a breach of data confidentiality, and a breach of data integrity.
Multiple vulnerabilities have been discovered in IBM products. Some of them allow an attacker to cause remote arbitrary code execution, privilege escalation, and a remote denial of service.
Multiple vulnerabilities have been discovered in Mozilla Thunderbird. They allow an attacker to cause a breach of data integrity and a denial of service.
Multiple vulnerabilities have been discovered in Traefik. They allow an attacker to cause security policy bypass.
Multiple vulnerabilities have been discovered in Cisco products. They allow an attacker to cause a remote denial of service and a breach of data confidentiality.
Multiple vulnerabilities have been discovered in ClamAV. They allow an attacker to cause denial of service and an unspecified security issue by the vendor.
Multiple vulnerabilities have been discovered in Elastic products. Some of them allow an attacker to cause a remote denial of service, a breach of data confidentiality, and a breach of data integrity.
A vulnerability has been discovered in CPython. It allows an attacker to bypass the security policy.
Multiple vulnerabilities have been discovered in Google Chrome. They allow an attacker to cause an unspecified security issue by the vendor.
Multiple vulnerabilities have been discovered in Adobe ColdFusion. Some of them allow an attacker to cause remote arbitrary code execution, privilege escalation, and data confidentiality breaches.
Multiple vulnerabilities have been discovered in Citrix products. Some of them allow an attacker to cause remote denial of service, data confidentiality breaches, and an unspecified security issue by the vendor.
A vulnerability has been discovered in Mozilla Firefox. It allows an attacker to cause remote arbitrary code execution.
Multiple vulnerabilities have been discovered in Synology MailPlus Server. Some of them allow an attacker to cause remote denial of service, data confidentiality breaches, and data integrity breaches.
Multiple vulnerabilities have been discovered in Apple products. Some of them allow an attacker to cause data confidentiality breaches, data integrity breaches, and security policy bypass.
Multiple vulnerabilities have been discovered in Apache Tomcat. Some of them allow an attacker to cause remote indirect code injection (XSS), security policy bypass, and an unspecified security issue by the vendor.