Aggregator
CVE-2025-59249 | Microsoft Exchange Server weak authentication
CVE-2025-59248 | Microsoft Exchange Server information disclosure
CVE-2025-59244 | Microsoft Windows up to Server 2025 NTLM Hash file inclusion
Beyond Alerts: Building Smarter, Context-Aware Threat Detection
Jeff Reed, chief product officer at Vectra AI, talks about the company’s latest advances in detection and response—and how AI is transforming the way enterprises defend against modern cyber threats. Reed, who joined Vectra after years leading cloud security and product teams at Google, explains that traditional approaches to threat detection are no longer sufficient...
The post Beyond Alerts: Building Smarter, Context-Aware Threat Detection appeared first on Security Boulevard.
CVE-2025-59243 | Microsoft Excel use after free
CVE-2025-59242 | Microsoft Windows up to Server 2025 Ancillary Function Driver for WinSock heap-based overflow
CVE-2025-59241 | Microsoft Windows 11 24H2/11 25H2 Health/Optimized Experiences link following
CVE-2025-59238 | Microsoft PowerPoint use after free
CVE-2025-59236 | Microsoft Excel use after free
CVE-2025-59235 | Microsoft Excel out-of-bounds
FortiOS CLI Command Bypass Vulnerability Let Attacker Execute System Commands
Fortinet disclosed a high-severity vulnerability in its FortiOS operating system on October 14, 2025, that could enable local authenticated attackers to execute arbitrary system commands. Tracked as CVE-2025-58325, the flaw stems from an incorrect provision of specified functionality (CWE-684) in the CLI component, potentially leading to privilege escalation. With a CVSS v3.1 score of 7.8 […]
The post FortiOS CLI Command Bypass Vulnerability Let Attacker Execute System Commands appeared first on Cyber Security News.