Security

Serial number:AV26-590
Date:June 11, 2026

On June 11, 2026, Check Point published a security advisory to address a vulnerability in the following product:

• Identity Agent – versions prior to 81.087.0000

The Cyber Centre encourages users and administrators to review the provided web links and perform the suggested mitigations.

• Check Point Response to CVE-2026-10847- Identity Agent Local Privilege Escalation Vulnerability
• Check Point Security

Serial number:AV26-589
Date:June 11, 2026

On June 10, 2026, Ubiquiti published a security advisory to address vulnerabilities in the following products. Included were critical updates for the following:

• UID Enterprise Agent – version 1.61.3 and prior
• UDM, UDM-Pro, UDM-SE, UDM-Pro-Max, EFG, UDW, UDR, UDR7, UDR-5G, Express 7, UCK, UCKP, UCK-Enterprise, UNVR, UNVR-Pro, UNVR-Instant, ENVR, ENVR-Core, UNVR-G2, UNVR-G2-Pro, UCG-Ultra, UCG-Max, UCG-Industrial and UCG-Fiber – version 5.1.12 and prior
• UniFi OS Server – version 5.0.8 and prior
• UDM-Beast – version 5.1.11 and prior
• UNAS-2, UNAS-4, UNAS-Pro, UNAS-Pro-4 and UNAS-Pro-8 – version 5.1.10 and prior
• Express – version 4.0.14 and prior

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

• Ubiquiti UniFi - Security Advisory Bulletin 065
• Ubiquiti UniFi Security Releases

Serial number: AV26-588
Date: June 11, 2026

On June 10, 2026, GitLab published a security advisory to address vulnerabilities in the following products:

• GitLab Community Edition (CE) – versions prior to 19.0.2, 18.11.5 and 18.10.8
• GitLab Enterprise Edition (EE) – versions prior to 19.0.2, 18.11.5 and 18.10.8

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

• GitLab Patch Release: 19.0.2, 18.11.5, 18.10.8
• GitLab Releases

Serial number: AV26-587
Date: June 11, 2026

On June 10, 2026, Oracle published a security advisory to address a critical vulnerability in the following product:

• PeopleSoft Enterprise PeopleTools – versions 8.61 and 8.62

Open-source reporting indicates that CVE-2026-35273 is being exploited in the wild.

The Cyber Centre encourages users and administrators to review the provided web links and perform the suggested mitigations.

• Oracle Security Alert Advisory - CVE-2026-35273
• Oracle Critical Patch Updates, Security Alerts and Bulletins

Serial number:AV26-586
Date:June 10, 2026

On June 10, 2026, Splunk published security advisories to address vulnerabilities in the following products:

• Splunk SOAR – versions prior to 8.5.0
• Splunk Enterprise – multiple versions and platforms
• Splunk Cloud Platform – multiple versions and platforms

The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.

• Splunk Security Advisories

Serial number: AV26-585
Date: June 10, 2026

On June 9, 2026, Broadcom published a security advisory to address vulnerabilities in the following product. Included was a critical update for the following:

• VMware Tanzu for Valkey on Kubernetes – versions prior to 3.4.1

The Cyber Centre encourages users and administrators to review the web links provided and apply the necessary updates.

• Product Release Advisory - VMware Tanzu for Valkey on Kubernetes 3.4.1
• Security Advisories - Tanzu