HomeCIS Advisories
Advisories
The latest information on known vulnerabilities in popular software and systems
See All
Advisories
Blog Posts
Case Studies
Spotlights
Newsletters
CIS Benchmarks
Podcasts
Press Releases
Webinars
White Papers
1 - 10 of 196 results
2025-099: A Vulnerability in Microsoft Windows Server Update Services (WSUS) Could Allow for Remote Code Execution
Issued on 10.24.2025
2025-099: A Vulnerability in Microsoft Windows Server Update Services (WSUS) Could Allow for Remote Code Execution
A vulnerability has been discovered in Microsoft Windows Server Update Services (WSUS) which could allow for remote code execution. WSUS is a too...
2025-098: Oracle Quarterly Critical Patches Issued October 21, 2025
Issued on 10.22.2025
2025-098: Oracle Quarterly Critical Patches Issued October 21, 2025
Multiple vulnerabilities have been discovered in Oracle products, the most severe of which could allow for remote code execution.
2025-096: Critical Patches Issued for Microsoft Products, October 14, 2025
Issued on 10.16.2025
2025-096: Critical Patches Issued for Microsoft Products, October 14, 2025
Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution. Successful e...
2025-097: Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution
Issued on 10.16.2025
2025-097: Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution
Multiple vulnerabilities have been discovered in Adobe products, the most severe of which could allow for arbitrary code execution. Adobe Co...
2025-094: Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution
Issued on 10.14.2025
2025-094: Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution
Multiple vulnerabilities have been discovered in Mozilla products, the most severe of which could allow for arbitrary code execution.*Mozilla Fir...
2025-095: Multiple Vulnerabilities in Ivanti Products Could Allow for Remote Code Execution
Issued on 10.14.2025
2025-095: Multiple Vulnerabilities in Ivanti Products Could Allow for Remote Code Execution
Multiple vulnerabilities have been discovered in Ivanti products, the most severe of which could allow for remote code execution. Successful expl...
2025-093: A Vulnerability in Oracle E-Business Suite Could Allow for Remote Code Execution
Issued on 10.06.2025
2025-093: A Vulnerability in Oracle E-Business Suite Could Allow for Remote Code Execution
A vulnerability has been discovered in Oracle E-Business Suite, which could allow for remote code execution. Oracle E-Business Suite (EBS) is a c...
2025-092: Multiple Vulnerabilities in VMware Aria Operations and VMware Tools Could Allow for Privilege Escalation
Issued on 09.30.2025
2025-092: Multiple Vulnerabilities in VMware Aria Operations and VMware Tools Could Allow for Privilege Escalation
Multiple vulnerabilities have been discovered in VMware Aria Operations and VMware Tools, the most severe of which could allow for privilege esca...
2025-090: A Vulnerability in Nx (build system) Package Could Allow for Sensitive Data Exfiltration
Issued on 09.25.2025
2025-090: A Vulnerability in Nx (build system) Package Could Allow for Sensitive Data Exfiltration
A vulnerability has been discovered in Nx (build system) Package, which could allow for sensitive data exfiltration. Nx is a smart, fast, and ext...
2025-091: Multiple Vulnerabilities in Cisco Products Could Allow for Remote Code Execution
Issued on 09.25.2025
2025-091: Multiple Vulnerabilities in Cisco Products Could Allow for Remote Code Execution
Multiple vulnerabilities have been discovered in Cisco products, the most severe of which could allow for remote code execution. Cisco is a leadi...

Explore Related Cybersecurity Solutions

CIS Benchmarks
Safeguard IT systems against cyber threats with more than 100 configuration guidelines across more than 25 vendor product families.
Learn More
CIS Controls
Protect your organization from cyber-attacks with globally recognized CIS Controls, companion guides, and mappings.
Learn More
CIS CyberMarket
CIS CyberMarket
Learn More
CIS Hardened Images
CIS Hardened Images
Learn More
CIS SecureSuite
CIS SecureSuite
Learn More
CIS Services
CIS Services
Learn More
EI-ISAC
Access resources for threat prevention, protection, response, and recovery for U.S. State, Local, Tribal, and Territorial (SLTT) government entities.
Learn More
MS-ISAC
Access resources for threat prevention, protection, response, and recovery for U.S. State, Local, Tribal, and Territorial (SLTT) government entities.
Learn More
See All Solutions
ThreatWA Ads