Centre d'alerte des menaces
Soyez le premier à être informé des dernières cybermenaces. Nos alertes fournissent des informations pertinentes sur les nouveaux problèmes de sécurité, les vulnérabilités et les exploits.
Gladinet CentreStack and Gladinet Triofox – Critical RCE (CVE-2025-30406)
Summary A critical security vulnerability, CVE-2025-30406, has been identified in Gladinet Centre...
Read More
Apache Roller – Critical session management vulnerability (CVE-2025-24859)
Summary A critical session management vulnerability, CVE-2025-24859, affects Apache Roller—a Java...
Read More
Fortinet FortiSwitch – Unverified Password Change Vulnerability (CVE-2024-48887)
Summary On April 8, 2025, Fortinet disclosed a critical vulnerability affecting multiple versions...
Read More
Apache Parquet – Critical RCE via Deserialization (CVE-2025-30065)
Summary On April 5, 2025, a critical deserialization vulnerability (CVE-2025-30065) affecting Apa...
Read More
CVE-2025-22457: Critical Ivanti Connect Secure Vulnerability
Summary On April 3, 2025, Ivanti disclosed CVE-2025-22457 that impacts Ivanti Connect Secure VPN ...
Read More
Critical Unauthenticated Remote Code Execution Vulnerabilities inIngress NGINX
Summary Wiz Research has uncovered multiple critical unauthenticated remote code execution (RCE) ...
Read More
Oracle Cloud SSO, LDAP Records Dumped, 140k+ Tenants Affected
On March 21, security threat intel vendor CloudSEK published a report on a forum post from a thre...
Read More
CVE-2025-24813: Apache Tomcat RCE/Info Disclosure Bug Exploited in the Wild
Summary On March 10, Apache disclosed CVE-2025-24813, a remote code execution and/or information ...
Read More
Pre-authentication SQL Injection to RCE in GLPI (CVE-2025-24799 / CVE-2025-24801)
Summary A significant vulnerability has been identified in GLPI, a popular open-source IT asset m...
Read More
Critical Kibana Vulnerability Enabling Remote Code Execution (CVE-2025-25012)
Summary A critical vulnerability, identified as CVE-2025-25015, has been disclosed in Kibana, whi...
Read More
Critical VMware ESXi, Workstation, Fusion Vulnerabilities Seen Exploited in Wild
Summary On March 4th, Microsoft’s Threat Intelligence Center (MSTIC) uncovered three critic...
Read More
Palo Alto PAN-OS Bug Severity Upgraded, Exploited in Wild
Summary Earlier this month we published an advisory about CVE-2025-0108, a vulnerability which al...
Read More
PAN-OS: Authentication Bypass in the Management Web Interface Disclosed andPatched
Summary A recently discovered vulnerability, CVE-2025-0108, in Palo Alto Networks PAN-OS, allows ...
Read More
Ivanti ICS, IPS, ISAC, CSA: Multiple Vulnerabilities Disclosed and Patched
Summary Ivanti has released security updates addressing nine vulnerabilities affecting Ivanti Con...
Read More
Critical Vulnerability in SonicWall Secure Mobile Access (SMA) 1000 Series Appliances
Summary A critical vulnerability (CVE-2025-23006) has been identified in SonicWall Secure Mobile ...
Read More