qualysblog - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.8	QUALYSBLOG:78D7...	Unauthenticated Authentication Bypass in Fortinet FortiWeb (CVE-2025-64446) Exploited in the Wild_QUALYSBLOG:78D78ACB6FCD64E06E3A6C46A78A6A24 A critical authentication bypass vulnerability affecting Fortinet FortiWeb web application firewalls has been actively exploited since early Octobe...	N/A	N/A	Nov 15, 2025	QUALYSBLOG
CRITICAL 9.8	QUALYSBLOG:3859...	Microsoft Patch Tuesday, November 2025 Security Update Review_QUALYSBLOG:38591674A8B62CA3F549305953B74E48 Microsoft released its November Patch Tuesday Security Updates. Here's a quick breakdown of what you need to know. ## Microsoft Patch Tuesday for ...	N/A	N/A	Nov 11, 2025	QUALYSBLOG
NONE	QUALYSBLOG:B31A...	Battle Compliance Confusion and Security Fatigue with Qualys and ServiceNow_QUALYSBLOG:B31A63AAE505CC682308139FC0A227FC Once upon a time, your biggest worry was whether Dave in Accounting would click on a suspicious link. Today, you wish Dave were your only worry. Yo...	N/A	N/A	Nov 10, 2025	QUALYSBLOG
NONE	QUALYSBLOG:FCC5...	Inside an Automotive Giant’s Data Leak — A Cloud Misconfiguration Lesson for AWS Users_QUALYSBLOG:FCC560367CC99CEC5015A7BD8E4E9422 70 TB+ of data, hard-coded keys, and weak IAM controls. For even the most experienced enterprises, one configuration decision can be enough to...	N/A	N/A	Nov 3, 2025	QUALYSBLOG
CRITICAL 10	QUALYSBLOG:7768...	What Security Teams Need to Know as PHP and IoT Exploits Surge_QUALYSBLOG:776873B00FE6E10D9EFA0DAB703C4C3D ## **Attack automation is accelerating, widening the window between detection and response. Qualys TRU telemetry reveals how these attacks unfold a...	N/A	N/A	Oct 30, 2025	QUALYSBLOG
CRITICAL 9.8	QUALYSBLOG:314B...	Oracle Critical Patch Update, October 2025 Security Update Review_QUALYSBLOG:314B40844ECA29B86078FC6FD1CC2F32 Oracle released its third quarterly edition of this year’s Critical Patch Update. The update received patches for 374 security vulnerabilities....	N/A	N/A	Oct 23, 2025	QUALYSBLOG
HIGH 8.7	QUALYSBLOG:8486...	A Strategic Response to the F5 BIG-IP Nation-State Breach_QUALYSBLOG:84868ADF276AF501A87D1D25921D67F3 In mid-October 2025, the cybersecurity landscape was dealt a severe blow. F5 disclosed a long-term, sophisticated breach by a nation-state threat a...	N/A	N/A	Oct 18, 2025	QUALYSBLOG
NONE	QUALYSBLOG:F4F6...	Introducing TruConfirm for Enterprise TruRisk™ Management: Automated Exposure Validation_QUALYSBLOG:F4F69508C0966CCD4AEB4EE696DE684A Enterprise security leaders and their teams face an impossible challenge: drowning in thousands of critical exposures in an ever-expanding attack s...	N/A	N/A	Oct 15, 2025	QUALYSBLOG
NONE	QUALYSBLOG:C74B...	Introducing TruLens for Enterprise TruRisk™ Management: Unified Threat Intelligence_QUALYSBLOG:C74B36FB5497E85F8C0DF2894A318854 CISOs and security leaders today face extraordinary challenges: the constant influx of vast quantities of fragmented threat data, information that ...	N/A	N/A	Oct 15, 2025	QUALYSBLOG
NONE	QUALYSBLOG:AD52...	Qualys ETM Identity — The First True Quantification of the Identity Perimeter_QUALYSBLOG:AD525F487579C2E57652A4C2D3E22441 Security has always been about controlling _who_ can do _what_ and _where_. In 2025, that control is mediated entirely by identity. When an at...	N/A	N/A	Oct 15, 2025	QUALYSBLOG