Vulnerability-Management

.ASS, Deepseek, AI Time Travel, Google, HeartBlocker, TikTok, Aaran Leyland, and More - SWN #447

1-click RCE possible by combining vulnerabilities in Voyager PHP

Backdoor in Contec CMS8000 monitors may allow faulty patient readings

Apple patches first actively exploited zero-day of 2025 on its devices

The state of Active Directory security with Semperis' Mickey Bresman

Attacks on Ivanti appliances demonstrate danger of chained exploits

Cursive Funk, Microsoft, Ivanti, Sonic Wall, Exchange, PowerSchool, Aaran Leyland... - SWN #445

Most online Exchange Servers vulnerable to ProxyLogon still not remediated

QNAP patches six Rsync bugs that could lead to RCEs on NAS devices

Ivanti CSA exploit chains examined in joint CISA, FBI advisory