About Us

Serial number:AV25-388
Date:July 2, 2025

On July 2, 2025, Cisco published security advisories to address vulnerabilities in the following products:

• Cisco BroadWorks Application Delivery Platform – versions prior to RI.2025.05
• Cisco Enterprise Chat and Email – version 11 and versions prior to 12.6(1)_ES11
• Cisco Spaces Connector – versions prior to Connector 3-Jun 2025
• Cisco Unified Communications Manager – versions 15.0.1.13010-1 to 15.0.1.13017-1
• Cisco Unified Communications Manager Session Management Edition Engineering Special (ES) – versions 15.0.1.13010-1 to 15.0.1.13017-1

The Cyber Centre encourages users and administrators to review the provided web links, perform the suggested mitigations and apply the necessary updates if available.

• Cisco BroadWorks Application Delivery Platform Cross-Site Scripting Vulnerability
• Cisco Enterprise Chat and Email Stored Cross-Site Scripting Vulnerability
• Cisco Spaces Connector Privilege Escalation Vulnerability
• Cisco Unified Communications Manager Static SSH Credentials Vulnerability
• Cisco Security Advisories

Serial number:AV25-387
Date:July 2, 2025

On July 2, 2025, Citrix published a security advisory to address a vulnerability in the following product:

• XenServer 8.4

The Cyber Centre encourages users and administrators to review the provided web links and perform the suggested mitigations.

• Citrix Security Advisory – CTX694780
• Citrix Security Advisories

Serial number:AV25-386
Date:July 2, 2025

On July 1, 2025, Microsoft published a security update to address a vulnerability in the following product:

• Microsoft Edge Stable Channel – versions prior to 138.0.3351.65

Google is aware that an exploit for CVE-2025-49713 exists in the wild.

The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary update.

• Microsoft Edge Stable Channel Release Notes

Serial number:AV25-385
Date:July 2, 2025

On June 30, 2025, Google published a security advisory to address a vulnerability in the following products:

• Stable Channel Chrome for Desktop – versions prior to 138.0.7204.96/97 (Windows), 138.0.7204.92/93 (Mac), and 138.0.7204.92 (Linux)

Google is aware that an exploit for CVE-2025-6554 exists in the wild.

The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates, when available.

• Google Chrome Security Advisory

Serial number:AV25-384
Date:June 30, 2025

Between June 23 and 29, 2025, Dell published security advisories to address vulnerabilities for the following products:

• iDRAC10 – versions prior to 1.20.50.50
• NetWorker – versions 19.12 to 19.12.0.1 and versions prior to 19.11.0.5
• Dell Open Manage Network Integration – versions prior to 3.7
• Dell PowerMax EEM 5978 – versions prior to 5978.714.714.10730
• Dell PowerMax EEM 10.2.0.1 – versions prior to 10.2.01 Patch 10732
• Dell PowerMaxOS 5978 – versions prior to 5978.714.714.10730
• Dell PowerMax OS 10.2.0.1 – versions prior to 10.2.0.1 Patch 10732
• PowerProtect Cyber Recovery – versions prior to 19.20
• Dell Secure Connect Gateway - Appliance – versions prior to 5.30.0.14
• Solutions Enabler – versions prior to 9.2.4.11 and versions prior to 10.2.0.5
• Dell Storage Monitoring and Reporting – versions prior to 5.1.1.0
• Dell Storage Resource Manager (SRM) – versions prior to 5.1.1.0
• Unisphere for PowerMax – versions prior to 9.2.4.17 and versions prior to 10.2.0.12
• Unisphere 360 – versions prior to 9.2.4.37

The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.

• Dell Security advisories and notices

Serial number:AV25-383
Date:June 30, 2025

Between June 23 and 29, 2025, IBM published security advisories to address vulnerabilities in multiple products.

The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.

• IBM Product Security Incident Response