You are on the Cert-IST public site

Crisis management HUB
September 25, 2023
High risk
High risk
(*) Excluding RU-UA conflict: The lock does not take into account the risk induced by the RU-UA conflict, although this threat is still present.
Alert level
Last Info
Juniper (CVE-2023-36844, ...)       <1 week
Barracuda ESG (CVE-2023-2868)       <1 month
NetScaler (CVE-2023-3519)       <3 month
3CX Desktop App (CVE-2023-29059) <6 month
Outlook (CVE-2023-23397) <6 month
VMware ESXiArgs       >6 months
Russie - Ukraine <6 month
Log4j       >6 months
Exchange (CVE-2021-26855)       >6 months

AL-2023.013 Apple BLASTPASS

AL-2023.012 Juniper
Latest public releases
15-Feb-2023 Annual review regarding vulnerabilities and attacks for 2022

Now available in ENGLISH!
Cert-IST has made public its Annual review regarding vulnerabilities and attacks for 2022.
02-Jan-2023 FORUM Cert-IST 2022

Presentation materials (in French) are available
01-Jun-2022 In Brief: A look at the FBI IC3 report
This article comes from the Cert-IST monthly bulletin n°294 (March 2022).
24-May-2022 What does the Conti leak tell us?
This article comes from the Cert-IST monthly bulletin n°293 (February 2022).
18-Feb-2022 Annual review regarding vulnerabilities and attacks for 2021

Now available in ENGLISH!
Cert-IST has made public its 2021 annual review regarding vulnerabilities and attacks.
11-Jan-2022 Patch management strategy
This article comes from the Cert-IST monthly bulletin n°289 (October 2021).
15-Nov-2021 This is how they tell me the world ends
This article comes from the Cert-IST monthly bulletin n°287 (August 2021).
Advisory exemples sent the previous week.
Risk Medium AV-2023.1624 - Vulnerability in WithSecure products (formerly F-Secure)
Risk Medium AV-2023.1623 - Multiple vulnerabilities in Wind River Linux
Risk Medium AV-2023.1622 - Vulnerability in Dell PowerEdge
Risk Medium AV-2023.1621 - Vulnerabilities on SolarWinds Platform (formerly Orion Platform)
Risk Low AV-2023.1620 - Vulnerabilities in the Linux kernel