Research Alerts
- CVE-2025-4428: Active exploitation has been observed by Ivanti and when chained together, these 2 CVEs can be abused for RCE
- CVE-2025-4427: Active exploitation has been observed by Ivanti and when chained together, these 2 CVEs can be abused for RCE
- CVE-2025-32756: Active exploitation has been observed and threat actors have deployed malware on impacted devices. Immediate patching is required
- CVE-2025-42999: SAP released a new security note for this flaw, which researchers say has been exploited as part of chained attacks using CVE-2025-31324.
- CVE-2025-34025: CVE-2025-34025, CVE-2025-34026 and CVE-2025-34027 have yet to be patched by Versa. While no exploitation has been confirmed, Tenable is monitoring these CVEs