You are on the
PUBLIC
PRIVATE
site
The CERT dedicated to the Industry, Services and Tertiary community
First center for alert and reaction to computer attacks
+2 100
NOTICES / YEAR
+7 800
NOTICE UPDATES / YEAR
+16
ALERTS / YEAR
+3 100
PRODUCTS MONITORED
+33 000
ASSOCIATED VERSIONS
Alert level
April 26, 2025
High risk
(*)Excluding RU-UA conflict: The lock does not take into account the risk induced by the RU-UA conflict, although this threat is still present.
-
AL-2025.009 Erlang OTP
-
AL-2025.008 Ivanti ICS
-
AL-2025.007 CrushFTP
- AL-2025.006 Ingress-Nginx (Kubernetes)
- INFO-2025.012 SAP NetWeaver
Crisis Management Hub
Ivanti (CVE-2025-22457)
Alert Level
Update Info
<1 month
Fortinet Node.js CVE-2024-55591
Alert Level
Update Info
<3 month
Ivanti (CVE-2025-0282)
Alert Level
Update Info
<3 month
FortiManager (CVE-2024-47575)
Alert Level
Update Info
<6 month
Examples of advisories issued the previous week
Vulnerability in HAProxy
AV-2025.0673
Vulnerabilities in MediaWiki
AV-2025.0672
Multiple vulnerabilities in Wind River Linux
AV-2025.0671
Vulnerability in Ivanti Connect Secure (formerly Pulse Connect Secure)
AV-2025.0586
Vulnerabilities in Suricata
AV-2025.0496
Cert-IST publications
Cert-IST 2025 report on attacks and vulnerabilities in 2024
Our Annual report is now available in English!
19-Feb-2025
Annual review regarding vulnerabilities and attacks for 2023
Our Annual report is now available in English!
12-Feb-2024
Russia-Ukraine: One year of war
This article comes from the Cert-IST monthly bulletin n°305 (February 2023).
07-May-2023
