CISA adds N-Able vulnerability to KEV Catalog

CISA adds N-Able vulnerability to KEV Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) has recently added two critical vulnerabilities affecting N-able's N-central to its Known Exploited Vulnerabilities (KEV) Catalog. These are identified as CVE-2025-8875 (insecure deserialization)…
CVE-2025-25256 affects FortiSIEM

CVE-2025-25256 affects FortiSIEM

1. Vulnerability Overview CVE-2025-25256 is a critical command injection bug in Fortinet FortiSIEM’s phMonitor service, exposed on TCP port 7900. It enables unauthenticated remote attackers to execute OS-level commands by…
SAP Patch Tuesday August 2025

SAP Patch Tuesday August 2025

SAP’s August 2025 Patch Tuesday addresses 25–26 security issues with an emphasis on several critical vulnerabilities involving code injection and insecure deserialization. The updates protect key SAP products such as…
Microsoft Patch Tuesday August 2025

Microsoft Patch Tuesday August 2025

Microsoft’s August 2025 Patch Tuesday brought critical security updates for 107 vulnerabilities across its products. Below is an enhanced, note-rich breakdown, with real-world exploitation context to clarify risks. Key Statistics…