TT-CSIRT – 445.06.08.25 – Critical RCE Vulnerabilities in Trend Micro Apex One (On-Premise) Management Console

  • Home
  • Archive for category "Security Advisories"
TT-CSIRT – 445.06.08.25 – Critical RCE Vulnerabilities in Trend Micro Apex One (On-Premise) Management Console
By

Please be advised that Trend Micro has identified and issued mitigations for two critical command injection vulnerabilities, CVE-2025-54948 and CVE-2025-54987, affecting the Apex One (On-Premise) Management Console. Both vulnerabilities may allow unauthenticated remote attackers to execute arbitrary commands on affected systems. Importantly, Trend Micro has observed active exploitation attempts in the wild (ITW) for at least […]

Read More
TT-CSIRT – 444.05.08.25 – Increased Threat Activity Targeting SSLVPN on Gen 7 SonicWall Firewalls
By

Please be advised that SonicWall has detected a substantial rise in cyber incidents within the past 4 days concerning Gen 7 SonicWall Firewalls that have SSL VPN activated. An ongoing investigation is being conducted to ascertain if the threat activity is associated with a previously disclosed vulnerability or a newly identified one. Impact Remote attackers […]

Read More
TT-CSIRT – 443.30.07.25 – Vulnerabilities found in some Dahua products
By

Please be advised that Dahua has released a security update to address two critical buffer overflow vulnerabilities CVE-2025-31700 and CVE-2025-31701 reported by the Bitdefender IoT Research Team. Impact Affected Products         CVE ID Affected Models Affected Version CVE-2025-31700 CVE-2025-31701 IPC-1XXX SeriesIPC-2XXX Series IPC-WX Series IPC-ECXX Series SD3A Series SD2A Series SD3D Series SDT2A Series SD2C Series […]

Read More
TT-CSIRT – 442.20.07.25 – SharePoint Vulnerability
By

Microsoft has advised of active attacks targeting on-premises SharePoint Server customers, SharePoint Online M365 is not impacted. The attacks are exploiting a variant of CVE-2025-49706 and being assigned CVE-2025-53770 with a patch currently not available. Currently the Microsoft team is actively working to release a security update and will provide additional details as they are […]

Read More
TT-CSIRT – 441.10.07.25 – Fortinet Security Advisories – SQL injection in GUI
By

Please be advised of the critical vulnerability CVE-2025-25257, which affects FortiWeb. This issue stems from improper handling of special characters in SQL commands, leading to a SQL Injection vulnerability (CWE-89). This vulnerability enables an attacker to execute unauthorized SQL code by sending specially crafted HTTP or HTTPS requests. Affected Versions and solutions: Version Affected Solution […]

Read More
TT-CSIRT – 439.09.04.25. Security Update – FortiSwitch Vulnerability
By

Please be advised that Fortinet has released a security update to address a critical vulnerability (CVE-2024-48887) found in the FortiSwitch GUI. This vulnerability could enable a remote unauthenticated attacker to alter admin passwords through a specifically designed request. Impact Affected Versions Version Affected Solution FortiSwitch 7.6 7.6.0 Upgrade to 7.6.1 or above FortiSwitch 7.4 7.4.0 […]

Read More
WhatsApp Phishing Campaign Alert
By

TTCSIRT has been made aware of an ongoing WhatsApp phishing campaign targeting users. Attackers are impersonating known contacts to trick victims into compromising their accounts. Methods of Attack: Deceptive Message: Victims receive messages from seemingly legitimate contacts, often requesting a favor or vote. This message may look like the following: “Blessings hope all is well […]

Read More
TT-CSIRT – 438.05.11.24. Security Update – Microsoft SharePoint Remote Code Execution Vulnerability
By

Please be advised of the following critical Microsoft SharePoint vulnerability, CVE-2024-38094, has been listed by our partners at the Cybersecurity & Infrastructure Security Agency (CISA) in their “Known Exploited Vulnerabilities Catalogue”. TTCSIRT encourages administrators to visit the following link for more information and take necessary actions immediately: CVE-2024-38094 – Security Update Guide – Microsoft – […]

Read More
TT-CSIRT -437.25.10.24. Cisco Event Response: October 2024 Security Advisory Bundle for ASA, FMC, and FTD Software
By

On October 23, 2024, Cisco issued their semi-annual Security Advisory Bundle for ASA, FMC, and FTD software. This release contains 35 Cisco Security Advisories that describe 51 vulnerabilities impacting Cisco ASA, FMC, and FTD devices. Cisco has released software upgrades to address the issues. The following identifies Cisco Security content that is associated with this […]

Read More
TTCSIRT – 435.26.09.24: Phishing Alert
By

The Trinidad and Tobago Cyber Security Incident Response Team (TT-CSIRT) is aware of a phishing email originating from a GovNeTT user’s compromised email “akesha.hazel@gov[.]tt’”. In this respect we are advising all persons not to engage with any emails received from the aforementioned email address with the following details: Persons who receive the email are advised […]

Read More

Quick Navigation

Partner Agencies

Subscribe to Stay Updated!

Subscribe

Follow on social media:

Facebook-f X-twitter Linkedin-in Instagram