CVE-2025-59287 is a vulnerability tracked across 17 threat clusters and 26 intelligence report mentions on ThreatCluster. First observed October 24, 2025; most recent activity December 7, 2025.
A critical vulnerability in FortiWeb Web Application Firewall (WAF) has been actively exploited, allowing attackers to gain full administrative access to affected systems. Organizations using FortiWeb are at risk of…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert regarding the active exploitation of a critical vulnerability in the Linux kernel, tracked as CVE-2024-1086. This privilege escalation…
Microsoft has released an out-of-band security update for a critical vulnerability, CVE-2025-59287, in Windows Server Update Services (WSUS) that allows unauthenticated remote code execution. The vulnerability, stemming…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert regarding the active exploitation of a critical vulnerability in the Linux kernel, tracked as CVE-2024-1086. This privilege escalation…
A critical vulnerability (CVE-2025-9242) in WatchGuard Firebox OS allows remote unauthenticated attackers to execute arbitrary code. Affected versions include Fireware OS 11.x, 12.x, and 2025.1. The U.S. Cybersecurity &…
A critical vulnerability (CVE-2025-9242) in WatchGuard's Fireware OS has been identified, allowing remote unauthenticated attackers to execute arbitrary code on over 54,000 Firebox devices globally. The U.S.…
Cisco has disclosed critical vulnerabilities in its Unified Contact Center Express (CCX) platform and Adaptive Security Appliances (ASA) that allow unauthenticated remote attackers to execute arbitrary code and…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added the OpenPLC ScadaBR vulnerability, tracked as CVE-2021-26829, to its Known Exploited Vulnerabilities catalog after confirming active…
The Washington Post has confirmed a data breach affecting nearly 10,000 current and former employees due to a cyberattack linked to vulnerabilities in Oracle's E-Business Suite. The breach, attributed to the Cl0p…
Attackers exploited a critical vulnerability in Windows Server Update Services (WSUS), identified as CVE-2025-59287, to deploy ShadowPad malware. This backdoor, associated with China-linked APT groups, allows for full…