FREE DIAGNOSTIC

Zimbra security advisory (AV25-678)
Serial number:AV25-678
Date:October 17, 2025

On October 16, 2025, Zimbra published a security advisory to address a vulnerability in the following product:

Zimbra Daffodil – versions prior to v10.1.12

The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.

Zimbra Daffodil (v10.1.12) Patch Release
Cisco security advisory (AV25-616) – Update 1
Serial number:AV25-616
Date:September 24, 2025
Updated:October 17, 2025

On September 24, 2025, Cisco published security advisories to address vulnerabilities in the following products:

Cisco Access Point Software – multiple versions and platforms

Cisco Catalyst 9500X and 9600X Series Switches – multiple versions

Cisco IOS XE Software for Catalyst 9XXX Series Switches – multiple versions and platforms

Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers for Cloud – multiple versions and platforms

Cisco IOS and IOS XE Software – multiple versions and platforms

Cisco Industrial Ethernet (IE) Series Switches – multiple versions and platforms

Cisco SD-WAN vEdge Routers – multiple versions and platforms

Cisco SD-WAN vEdge Software Release – versions prior to 20.8, 20.9 and 20.10

Cisco Wireless Access Point (AP) Software – multiple versions and platforms

Cisco Wireless LAN Controller (WLC) IOS XE Software – multiple versions and platforms

Update 1

On September 29, 2024, CISA released a statement indicating that CVE-2025-20352 is being actively exploited in the wild and added it to their Known Exploited Vulnerabilities (KEV) Catalog.

The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates if available.

Cisco IOS XE Software Simple Network Management Protocol Denial of Service Vulnerability

Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability

Cisco Security Advisories
WatchGuard security advisory (AV25-677)
Serial number:AV25-677
Date:October 16, 2025

On September 17, 2025, WatchGuard published a security advisory to address a vulnerability in the following product:

Fireware OS – version 11.10.2 to 11.12.4_Update1, version 12.0 to 12.11.3, and version 2025.1.

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

WatchGuard Firebox iked Out of Bounds Write Vulnerability

WatchGuard Security Advisories
[Control systems] Siemens security advisory (AV25-676)
Serial number:AV25-676
Date:October 16, 2025

On October 14, 2025, Siemens published advisories to address vulnerabilities in multiple products. Included were updates for the following products:

TeleControl Server Basic V3.1 – versions V3.1.2.2 to versions prior to V3.1.2.3

SINEC NMS – versions prior to V4.0 SP1

Industrial Edge App Publisher – versions prior to V1.23.5

SIMATIC ET 200SP communication processors – versions prior to V2.4.24

Solid Edge SE2024 – versions prior to V224.0 Update 14

Solid Edge SE2025 – versions prior to V225.0 Update 6

SiPass integrated – versions prior to V3.0

The Cyber Centre encourages users and administrators to review the provided web links, perform the suggested mitigations and apply the necessary updates.

SSA-062309: Information Disclosure Vulnerability in TeleControl Server Basic V3.1

SSA-318832: SQL Injection Vulnerability in SINEC NMS

SSA-365200: Google Chrome Type Confusion Vulnerability in Siemens Products

SSA-486936: Authentication Vulnerability in SIMATIC ET 200SP Communication Processors

SSA-541582: Multiple File Parsing Vulnerabilities in Solid Edge

Siemens Security Advisories
[Control systems] Schneider Electric security advisory (AV25-675)
Serial number:AV25-675
Date:October 16, 2025

On October 14, 2025, Schneider Electric published advisories to address a vulnerability in the following products:

EcoStruxure™ OPC UA Server Expert – versions prior to SV2.01 SP3

EcoStruxureTM Modicon Communication Server – all versions

The Cyber Centre encourages users and administrators to review the provided web links, perform the suggested mitigations and apply the necessary updates.

EcoStruxure™ OPC UA Server Expert and EcoStruxureTM Modicon Communication Server

Schneider Electric Security Notifications
Mozilla security advisory (AV25-674)
Serial number:AV25-674
Date:October 16, 2025

On October 14, 2025, Mozilla published security advisories to address vulnerabilities in the following products:

Firefox - versions prior to 144

Firefox ESR – versions prior to 115.29

Firefox ESR – versions prior to 140.4

Thunderbird – versions prior to 144

Thunderbird – versions prior to 140.4

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

Mozilla Security Advisories

PC Desktops	PC Laptops	iMacs	Macbooks
	Home of the FREE Diagnostic (That's right. It's FREE) In 24 hours you will know the exact issues and cost of repair No work is done unless you approve it! It's not an estimate, it's a set price! All repairs are guaranteed! No appointment necessary (There is a Diagnostic charge for custom builds for component testing)

FREE DIAGNOSTIC

Threats/Scams