Advisory Week


Week 10, 2025
Apple Security Advisory
 
Safari 18.3.1 - Apple Security Content
iOS 18.3.2 and iPadOS 18.3.2 - Apple Security Content
macOS Sequoia 15.3.2 - Apple Security Content
visionOS 2.3.2 - Apple Security Content
National Cyber Awareness System
 
CISA Releases Thirteen Industrial Control Systems Advisories
CISA Adds Two Known Exploited Vulnerabilities to Catalog
CISA and Partners Release Cybersecurity Advisory on Medusa Ransomware
CISA Releases Two Industrial Control Systems Advisories
CISA Adds Six Known Exploited Vulnerabilities to Catalog
CISA Adds Five Known Exploited Vulnerabilities to Catalog
Adobe Security Bulletins and Advisories
 
Security Updates Available for Adobe Illustrator | APSB25-17
Prenotification Security Advisory for Adobe Acrobat and Reader  | APSB25-14
Security updates available for Adobe Substance3D - Sampler | APSB25-16
Security Update Available for Adobe InDesign | APSB25-19
Security updates available for Adobe Substance3D - Modeler | APSB25-21
Ubuntu Security Notices
 
Linux kernel vulnerabilities: USN-7328-3 / USN-7344-2 / USN-7328-2 / USN-7325-3 / USN-7332-3 / USN-7332-2 / USN-7344-1 / USN-7342-1
RESTEasy vulnerabilities: USN-7351-1
Jinja2 regression: USN-7343-2
UnRAR vulnerabilities: USN-7350-1
RAR vulnerabilities: USN-7349-1 / USN-7350-1
Python vulnerabilities: USN-7348-1
X.Org X Server regression: USN-7299-3
Netatalk vulnerabilities: USN-7347-1
OpenSC vulnerabilities: USN-7346-1
.NET vulnerability: USN-7345-1
Jinja2 vulnerabilities: USN-7343-1
FreeRDP vulnerabilities: USN-7341-1
OpenVPN vulnerabilities: USN-7340-1
CRaC JDK 17 vulnerabilities: USN-7338-1
CRaC JDK 21 vulnerabilities: USN-7339-1
LibreOffice vulnerability: USN-7337-1
X.Org X Server vulnerabilities: USN-7299-2
Red Hat Security Advisory
 
Important: grub2 security update: RHSA-2025:2784 / RHSA-2025:2655 / RHSA-2025:2653
Important: libxml2 security update: RHSA-2025:2679 / RHSA-2025:2654 / RHSA-2025:2483 / RHSA-2025:2482
Important: RHODF-4.18-RHEL-9 enhancement, bug fix and security update: RHSA-2025:2652
Important: kernel security update: RHSA-2025:2646 / RHSA-2025:2627 / RHSA-2025:2528 / RHSA-2025:2525 / RHSA-2025:2490 / RHSA-2025:2489 / RHSA-2025:2488 / RHSA-2025:2475 / RHSA-2025:2473
Important: OpenShift Container Platform 4.18.4 security update: RHSA-2025:2449
Moderate: java-1.8.0-ibm security update: RHSA-2025:2615
Important: pcs security update: RHSA-2025:2550 / RHSA-2025:2471 / RHSA-2025:2470
Moderate: Red Hat build of Keycloak 26.0.10 Update: RHSA-2025:2545
Moderate: Red Hat build of Keycloak 26.0.10 Images Update: RHSA-2025:2544
Important: ACS 4.5 enhancement update: RHSA-2025:2526
Important: kernel-rt security update: RHSA-2025:2524 / RHSA-2025:2476 / RHSA-2025:2474
Important: firefox security update: RHSA-2025:2486 / RHSA-2025:2485 / RHSA-2025:2484 / RHSA-2025:2481 / RHSA-2025:2480 / RHSA-2025:2479
PHP Advisories
 
5 Vulnerabilities Fixed in PHP 8.2.28
5 Vulnerabilities Fixed in PHP 8.1.32
6 Vulnerabilities Fixed in PHP 8.4.5
6 Vulnerabilities Fixed in PHP 8.3.19
Cisco Security Advisory
 
Cisco IOS XR Software Image Verification Bypass Vulnerability
Cisco IOS XR Software Internet Key Exchange Version 2 Denial of Service Vulnerability
Cisco IOS XR Software Release 7.9.2 Denial of Service Vulnerability
Cisco IOS XR Software Secure Boot Bypass Vulnerability
Cisco IOS XR Software Hybrid Access Control List Bypass Vulnerability
Cisco IOS XR Software for ASR 9000 Series Routers Layer 3 Multicast Denial of Service Vulnerability
Cisco IOS XR Software Access Control List Bypass Vulnerability
Cisco IOS XR Software for ASR 9000 Series Routers IPv4 Unicast Packets Denial of Service Vulnerability
Cisco IOS XR Software CLI Privilege Escalation Vulnerability
Cisco IOS XR Software Border Gateway Protocol Confederation Denial of Service Vulnerability
Microsoft Security
 
Microsoft March 2025 Security Update Guide
CVE-2025-24053 Microsoft Dataverse Elevation of Privilege Vulnerability
Chromium: CVE-2025-2136 Use after free in Inspector
Chromium: CVE-2025-24201 Out of bounds write in GPU on Mac
Chromium: CVE-2025-2137 Out of bounds read in V8
Chromium: CVE-2025-1920 Type Confusion in V8
Chromium: CVE-2025-2135 Type Confusion in V8
CVE-2025-26634 Windows Core Messaging Elevation of Privileges Vulnerability
CVE-2025-26633 Microsoft Management Console Security Feature Bypass Vulnerability
CVE-2025-26645 Remote Desktop Client Remote Code Execution Vulnerability
CVE-2025-26630 Microsoft Access Remote Code Execution Vulnerability
CVE-2025-26631 Visual Studio Code Elevation of Privilege Vulnerability
CVE-2025-26627 Azure Arc Installer Elevation of Privilege Vulnerability
CVE-2025-26629 Microsoft Office Remote Code Execution Vulnerability
CVE-2025-24049 Azure Command Line Integration (CLI) Elevation of Privilege Vulnerability
CVE-2025-24993 Windows NTFS Remote Code Execution Vulnerability
CVE-2025-24994 Microsoft Windows Cross Device Service Elevation of Privilege Vulnerability
CVE-2025-24991 Windows NTFS Information Disclosure Vulnerability
CVE-2025-24992 Windows NTFS Information Disclosure Vulnerability
CVE-2025-24985 Windows Fast FAT File System Driver Remote Code Execution Vulnerability
CVE-2025-24983 Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability
CVE-2025-24984 Windows NTFS Information Disclosure Vulnerability
CVE-2025-24084 Windows Subsystem for Linux (WSL2) Kernel Remote Code Execution Vulnerability
CVE-2025-24075 Microsoft Excel Remote Code Execution Vulnerability
CVE-2025-24076 Microsoft Windows Cross Device Service Elevation of Privilege Vulnerability
CVE-2025-24071 Microsoft Windows File Explorer Spoofing Vulnerability
CVE-2025-24072 Microsoft Local Security Authority (LSA) Server Elevation of Privilege Vulnerability
CVE-2025-24067 Kernel Streaming Service Driver Elevation of Privilege Vulnerability
CVE-2025-24064 Windows Domain Name Service Remote Code Execution Vulnerability
CVE-2025-24066 Kernel Streaming Service Driver Elevation of Privilege Vulnerability
CVE-2025-24059 Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2025-24061 Windows Mark of the Web Security Feature Bypass Vulnerability
CVE-2025-24055 Windows USB Video Class System Driver Information Disclosure Vulnerability
CVE-2025-24056 Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-24051 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVE-2025-24054 NTLM Hash Disclosure Spoofing Vulnerability
CVE-2025-24050 Windows Hyper-V Elevation of Privilege Vulnerability
CVE-2025-24046 Kernel Streaming Service Driver Elevation of Privilege Vulnerability
CVE-2025-24048 Windows Hyper-V Elevation of Privilege Vulnerability
CVE-2025-24045 Windows Remote Desktop Services Remote Code Execution Vulnerability
CVE-2025-21247 MapUrlToZone Security Feature Bypass Vulnerability
CVE-2025-21199 Azure Agent Installer for Backup and Site Recovery Elevation of Privilege Vulnerability
CVE-2025-25008 Windows Server Elevation of Privilege Vulnerability
CVE-2025-25003 Visual Studio Elevation of Privilege Vulnerability
CVE-2025-24998 Visual Studio Elevation of Privilege Vulnerability
CVE-2025-24997 DirectX Graphics Kernel File Denial of Service Vulnerability
CVE-2025-24995 Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
CVE-2025-24996 NTLM Hash Disclosure Spoofing Vulnerability
CVE-2025-21180 Windows exFAT File System Remote Code Execution Vulnerability
CVE-2025-24987 Windows USB Video Class System Driver Elevation of Privilege Vulnerability
CVE-2025-24988 Windows USB Video Class System Driver Elevation of Privilege Vulnerability
CVE-2025-24083 Microsoft Office Remote Code Execution Vulnerability
CVE-2025-24986 Azure Promptflow Remote Code Execution Vulnerability
CVE-2025-24081 Microsoft Excel Remote Code Execution Vulnerability
CVE-2025-24082 Microsoft Excel Remote Code Execution Vulnerability
CVE-2025-24080 Microsoft Office Remote Code Execution Vulnerability
CVE-2025-24078 Microsoft Word Remote Code Execution Vulnerability
CVE-2025-24079 Microsoft Word Remote Code Execution Vulnerability
CVE-2025-24077 Microsoft Word Remote Code Execution Vulnerability
CVE-2025-24057 Microsoft Office Remote Code Execution Vulnerability
CVE-2025-24070 ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability
CVE-2025-24044 Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability
CVE-2025-24043 WinDbg Remote Code Execution Vulnerability
CVE-2024-9157 Synaptics: CVE-2024-9157 Synaptics Service Binaries DLL Loading Vulnerability
CVE-2025-24035 Windows Remote Desktop Services Remote Code Execution Vulnerability
Github Security Advisories
 
[GHSA-6m2c-76ff-6vrf] Qiskit allows arbitrary code execution decoding QPY format versions < 13
[GHSA-r8gc-qc2c-c7vh] Post-Quantum Secure Feldman's Verifiable Secret Sharing has Inadequate Fault Injection Countermeasures in `secure_redundant_execution`
[GHSA-q65w-fg65-79f4] Post-Quantum Secure Feldman's Verifiable Secret Sharing has Timing Side-Channels in Matrix Operations
[GHSA-vhv4-fh94-jm5x] JS Html Sanitizer allows XSS when used with contentEditable
[GHSA-8vvx-qvq9-5948] Flowise allows arbitrary file write to RCE
[GHSA-xc76-5pf9-mx8m] In Azle, calling `setTimer` causes infinite loop of timers
[GHSA-x3m8-899r-f7c3] xml-crypto Vulnerable to XML Signature Verification Bypass via DigestValue Comment
[GHSA-9p8x-f768-wp2g] xml-crypto Vulnerable to XML Signature Verification Bypass via Multiple SignedInfo References
[GHSA-h42x-xx2q-6v6g] Flowise Pre-auth Arbitrary File Upload
[GHSA-q298-375f-5q63] Snowflake JDBC Driver client-side encryption key in DEBUG logs
[GHSA-h2rp-8vpx-q9r4] cheqd-node Security patch for upstream vulnerabilities in IBC-Go (ISA-2025-001) and Cosmos SDK (ISA-2025-002)
[GHSA-hg9j-64wp-m9px] Flarum Vulnerable to Session Hijacking via Authoritative Subdomain Cookie Overwrite
[GHSA-754f-8gm6-c4r2] Ruby SAML allows a SAML authentication bypass due to namespace handling (parser differential)
[GHSA-4vc4-m8qh-g8jm] Ruby SAML allows a SAML authentication bypass due to DOCTYPE handling (parser differential)
[GHSA-92rq-c8cf-prrq] Ruby SAML allows remote Denial of Service (DoS) with compressed SAML responses
[GHSA-hw46-3hmr-x9xv] omniauth-saml has dependency on ruby-saml version with Signature Wrapping Attack issue
[GHSA-4wf3-5qj9-368v] IBC-Go: Non-deterministic JSON Unmarshalling of IBC Acknowledgement can result in a chain halt
[GHSA-47ww-ff84-4jrg] Cosmos SDK: x/group can halt when erroring in EndBlocker
[GHSA-q92j-grw3-h492] graphql allows remote code execution when loading a crafted GraphQL schema
[GHSA-3wgq-h4fr-cwg5] laravel-crud-wizard-free has File Validation Bypass
[GHSA-9m3q-rhmv-5q44] Out-of-bounds Read in Ruby JSON Parser
[GHSA-33cr-m232-xqch] cheqd-node affected by Non-deterministic JSON Unmarshalling of IBC Acknowledgement
[GHSA-qjpx-5m2p-5pgh] Pimcore Vulnerable to SQL Injection in getRelationFilterCondition
[GHSA-9mc5-7qhg-fp3w] Below has Incorrect Permission Assignment for Critical Resource
[GHSA-26xq-m8xw-6373] Froxlor has an HTML Injection Vulnerability
[GHSA-7j6w-p859-464f] Froxlor allows Multiple Accounts to Share the Same Email Address Leading to Potential Privilege Escalation or Account Takeover
[GHSA-968p-4wvh-cqc8] Babel has inefficient RexExp complexity in generated code with .replace when transpiling named capturing groups
[GHSA-48g7-3x6r-xfhp] Arbitrary Code Execution via Crafted Keras Config for Model Loading
[GHSA-2865-hh9g-w894] Microsoft Security Advisory CVE-2025-24070: .NET Elevation of Privilege Vulnerability
[GHSA-46r4-f8gj-xg56] The SimpleSAMLphp SAML2 library incorrectly verifies signatures for HTTP-Redirect binding
[GHSA-w7f9-wqc4-3wxr] Mockoon has a Path Traversal and LFI in the static file serving endpoint
[GHSA-wx5h-wqfq-v698] Umbraco Allows a Restricted Editor User to Delete Media Item or Access Unauthorized Content
[GHSA-6ffg-mjg7-585x] Umbraco Allows Improper API Access Control to Low-Privilege Users to Data Type Functionality
[GHSA-44f7-5fj5-h4px] Ratify Azure authentication providers can leak authentication tokens to non-Azure container registries
[GHSA-9m63-33q3-xq5x] Vela Server Has Insufficient Webhook Payload Data Verification
[GHSA-7wqh-767x-r66v] Local File Inclusion in Rack::Static
[GHSA-gvgg-2r3r-53x7] Improper Authorization in Keycloak Organization Mapper Allows Unauthorized Organization Claims
[GHSA-2p82-5wwr-43cw] Authentication Bypass Due to Missing LDAP Bind After Password Reset in Keycloak
[GHSA-g274-c6jj-h78p] PocketMine-MP allows malicious client data to waste server resources due to lack of limits for explode()
[GHSA-6hrw-x7pr-4mp8] LF Edge eKuiper allows Stored XSS in Rules Functionality
[GHSA-47qw-ccjm-9c2c] LocalS3 XML Parser Vulnerable to XML External Entity (XXE) Injection
[GHSA-v232-254c-m6p7] LocalS3 Project Vulnerable to XML External Entity (XXE) Injection via Bucket Tagging API
[GHSA-2466-4485-4pxj] LocalS3 Project Bucket Operations Vulnerable to XML External Entity (XXE) Injection
[GHSA-7q5r-7gvp-wc82] Zip Exploit Crashes Picklescan But Not PyTorch
[GHSA-w8jq-xcqf-f792] Zip Flag Bit Exploit Crashes Picklescan But Not PyTorch
[GHSA-g6wm-2v64-wq36] LocalS3 CreateBucketConfiguration Endpoint XML External Entity (XXE) Injection
CISA Known Exploted Vulnerabilities
 
Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability CVE-2024-13161
Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability CVE-2024-13160
Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability CVE-2024-13159
Advantive VeraCore Unrestricted File Upload Vulnerability CVE-2024-57968
Advantive VeraCore SQL Injection Vulnerability CVE-2025-25181
Microsoft Windows NTFS Heap-Based Buffer Overflow Vulnerability CVE-2025-24993
Microsoft Windows NTFS Out-Of-Bounds Read Vulnerability CVE-2025-24991
Microsoft Windows Fast FAT File System Driver Integer Overflow Vulnerability CVE-2025-24985
Microsoft Windows NTFS Information Disclosure Vulnerability CVE-2025-24984
Microsoft Windows Win32k Use-After-Free Vulnerability CVE-2025-24983
Microsoft Windows Management Console (MMC) Improper Neutralization Vulnerability CVE-2025-26633
Juniper Junos OS Improper Isolation or Compartmentalization Vulnerability CVE-2025-21590
Apple Multiple Products WebKit Out-of-Bounds Write Vulnerability CVE-2025-24201

The known exploited vulnerabilities list contains vulnerabilities that are known to be actively exploited. They may not be new or recently discovered. Vulnerabilities listed here were added to this list in the past week.
Switch to Daily Mode
  We're thrilled to announce the launch of AdvisoryDaily, a once a day version of this newsletter.

Get AdvisoryDaily