Threat Alert Center
Be the first to know about the latest vulnerabilities, attack campaigns, and highly impactful threat actor activity. Our threat advisories and bulletins provide detailed and easy to understand security guidance about current security issues, vulnerabilities, and exploits.
PAN-OS: Authentication Bypass in the Management Web Interface Disclosed andPatched
Summary A recently discovered vulnerability, CVE-2025-0108, in Palo Alto Networks PAN-OS, allows ...
Read More
Ivanti ICS, IPS, ISAC, CSA: Multiple Vulnerabilities Disclosed and Patched
Summary Ivanti has released security updates addressing nine vulnerabilities affecting Ivanti Con...
Read More
Critical Vulnerability in SonicWall Secure Mobile Access (SMA) 1000 Series Appliances
Summary A critical vulnerability (CVE-2025-23006) has been identified in SonicWall Secure Mobile ...
Read More
CVE-2024-55591: Critical Auth Bypass Affecting FortiOS and FortiProxy Seen in Wild
Summary On Jan. 14, FortiNet released an advisory regarding an authentication bypass in some vers...
Read More
Critical Vulnerabilities CVE-2025-0282 and CVE-2025-0283 in Ivanti Connect Secure VPN Appliances
Summary On January 8, 2025, Ivanti disclosed two critical vulnerabilities, and, impacting Ivanti ...
Read More
Time to patch: Multiple critical vulnerabilities under exploitation
Summary At Kudelski security, with the end of year approaching we have observed multiple vulnerab...
Read More
Critical Zero-Day Vulnerability in Palo Alto Networks Next-Generation Firewalls (PAN-SA-2024-0015)
Summary Palo Alto Networks has identified a critical zero-day vulnerability (PAN-SA-2024-0015) in...
Read More
FortiManager Critical CVE-2024-47575 “FortiJump” Allows RCE
Summary On October 23, 2024, Fortinet published an advisory for CVE-2024-47575, a critical-severi...
Read More
Kubernetes Image Builder Vulnerabilities
Summary Recently released were two vulnerabilities, CVE-2024-9486 (CVSS 9.8) and CVE-2024-9594 (C...
Read More
Splunk Enterprise Multiple Vulnerabilities for RCE
Summary Splunk has disclosed several high-severity vulnerabilities in Splunk Enterprise and Splun...
Read More
Security Advisory: CVE-2024-45519
Summary CVE-2024-45519 is a critical security vulnerability discovered in the postjournal service...
Read More
Critical Security Updates for Palo Alto Networks: CVE-2024-5910 & CVE-2024-3596
Summary Palo Alto Networks has released critical security updates addressing several vulnerabilit...
Read More
Remote Code Execution in OpenSSH’s Server (CVE-2024-6387) – regreSSHion
Updates made on July 3 Summary A critical vulnerability (CVE-2024-6387) named regreSSHion has bee...
Read More
Critical Authentication Bypass in Juniper Session Smart Router CVE-2024-2973
Summary Juniper Networks has issued an out-of-cycle security bulletin to address a critical vulne...
Read More
Ivanti Connect Secure/Policy Secure CVE-2023-46805, CVE-2024-21887 Combine for Unauthenticated RCE, and following CVEs discovered over time
Written by the Kudelski Security Threat Detection & Research Team (updated on 2024.02.12 by ...
Read More