Remote Help

Serial number:AV25-322
Date:June 6, 2025

On June 2, 2025, Android published a security bulletin to address vulnerabilities affecting Android devices.

The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.

• Android Security Bulletin

Serial number:AV25-321
Date:June 6, 2025

On June 6, 2025, Jenkins published a security advisory to address vulnerabilities in the following products:

• Gatling Plugin – version 136.vb_9009b_3d33a_e and prior

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

• Jenkins Security Advisory 2025-06-06
• Jenkins Security Advisories

Serial number:AV25-320
Date:June 6, 2025

On June 4, 2025, HPE published a security advisory to address vulnerabilities in the following product:

• HPE Insight Remote Support – versions prior to 7.15.0.646

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

• HPE Security Bulletin - HPESBGN04878
• HPE Security Bulletin Library

Serial number:AV25-319
Date:June 5, 2025

On June 4, 2025, VMware released a security advisory to address vulnerabilities in the following products:

• VMware Cloud Foundation – versions 5.0.x, 5.1.x and 5.2.x
• VMware NSX – versions 4.0.x, 4.1.x, 4.2.1.x and 4.2.x
• VMware Telco Cloud Infrastructure – versions 2.x and 3.x
• VMware Telco Cloud Platform – versions 3.x, 4.x and 5.x

The Cyber Centre encourages users and administrators to review the provided web links and perform the suggested mitigations.

• VMSA-2025-0012: VMware NSX updates address multiple vulnerabilities (CVE-2025-22243, CVE-2025-22244, CVE-2025-22245)
• Security Advisories - VMware Cloud Foundation

Serial number:AV25-318
Date:June 4, 2025

On June 4, 2025, Cisco published security advisories to address vulnerabilities in multiple products. Included were updates for the following products:

• Cisco Identity Services Engine on Cloud Platforms (AWS) – versions 3.1, 3.2, 3.3 and 3.4
• Cisco Identity Services Engine on Cloud Platforms (Azure) – versions 3.2, 3.3 and 3.4
• Cisco Identity Services Engine on Cloud Platforms (OCI) – versions 3.2, 3.3 and 3.4
• Cisco Integrated Management Controller – UCS B-Series Blade Servers
• Cisco Integrated Management Controller – UCS C-Series Rack Servers
• Cisco Integrated Management Controller – UCS S-Series Storage Servers
• Cisco Integrated Management Controller – UCS X-Series Modular System
• Cisco Nexus Dashboard Fabric Controller (NDFC) – versions prior to 3.2(2f)

The Cyber Centre encourages users and administrators to review the provided web links, perform the suggested mitigations and apply the necessary updates if available.

• Cisco Identity Services Engine on Cloud Platforms Static Credential Vulnerability
• Cisco Integrated Management Controller Privilege Escalation Vulnerability
• Cisco Nexus Dashboard Fabric Controller SSH Host Key Validation Vulnerability
• Cisco Security Advisories

Serial number:AV25-317
Date:June 4, 2025

On June 3, 2025, Microsoft published a security update to address a vulnerability in the following product:

• Microsoft Edge Stable Channel – versions prior to 137.0.3296.62

The Chromium team is aware that an exploit for CVE-2025-5419 exists in the wild.

The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.

• Microsoft Edge Stable Channel Release Notes