About Us

Serial number:AV25-356
Date:June 18, 2025

On June 18, 2025, Cisco published security advisories to address vulnerabilities in the following products:

• Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway – multiple models
• Secure Endpoint Connector for Linux – versions prior to 1.26.1
• Secure Endpoint Connector for Mac – versions prior to 1.26.1
• Secure Endpoint Connector for Windows – versions prior to 7.5.21 and 8.4.5
• Secure Endpoint Private Cloud – versions prior to 4.2.2

The Cyber Centre encourages users and administrators to review the provided web links, perform the suggested mitigations and apply the necessary updates if available.

• ClamAV UDF File Parsing Out-of-Bounds Read Information Disclosure Vulnerability
• Cisco Meraki MX and Z Series AnyConnect VPN with Client Certificate Authentication Denial of Service Vulnerability
• Cisco Security Advisories

Serial number:AV25-355
Date:June 18, 2025

On June 17, 2025, Atlassian published a security advisory to address vulnerabilities in the following products:

• Bamboo Data Center and Server – multiple versions
• Bitbucket Data Center and Server – multiple versions
• Confluence Data Center and Server – multiple versions
• Crowd Data Center and Server – multiple versions
• Jira Data Center and Server – multiple versions
• Jira Service Management Data Center and Server – multiple versions

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

• Security Bulletin - June 17 2025
• Atlassian Security Advisories and Bulletins

Serial number:AV25-354
Date:June 18, 2025

On June 16, 2025, Apache published a security advisory to address a vulnerability in the following products:

• Apache Tomcat – versions 11.0.0-M1 to 11.0.7
• Apache Tomcat – versions 10.1.0-M1 to 10.1.41
• Apache Tomcat – versions 9.0.0.M1 to 9.0.105

The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.

• Apache Security Advisory - [SECURITY] CVE-2025-48988 Apache Tomcat - DoS in multipart upload

Serial number:AV25-353
Date:June 17, 2025

On June 17, 2025, Google published a security advisory to address vulnerabilities in the following product:

• Stable Channel Chrome for Desktop – versions prior to 137.0.7151.119/.120 (Windows/Mac), and 137.0.7151.119 (Linux)

The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates, when available.

• Google Chrome Security Advisory

Serial number:AV25-352
Date:June 17, 2025

On June 17, 2025, Veeam published a security advisory to address vulnerabilities in the following products:

• Veeam Backup & Replication – version 12.3.1.1139 and prior
• Veeam Agent for Microsoft Windows – version 6.3.1.1074 and prior

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

• Veeam Security Advisory – KB4743
• Veeam Knowledge Base

Serial number:AV25-351
Date:June 17, 2025

On June 16, 2025, BeyondTrust published a security advisory to address a vulnerability in the following products:

• Remote Support – version 24.2.2 to 24.2.4, 24.3.1 to 24.3.3, and 25.1.1
• Privileged Remote Access – version 24.2.2 to 24.2.4, 24.3.1 to 24.3.3, and 25.1.1

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

• BeyondTrust Security Advisory - Advisory ID: BT25-04
• BeyondTrust Advisories