• ®
  • About
    • About Us

      Security. It’s in our DNA. It’s elemental, foundational. Something that an always-on, everything’s-IoT-connected world depends on.

      Helping mid-to-enterprise organizations protect assets and manage risk is our only business. Our mission is to make our customers’ world a safer place so that they may thrive in an always-on, connected world.

    • Leadership
    • Careers
  • Solutions

    Governance, Risk & Compliance

    • Compliance Audit & Risk Assessment
    • Compliance Program Development
    • Continuous Compliance & Policy Management

    Attack Surface Management

    • Tool Consolidation & Optimization
    • Configuration & Deployment
    • Testing & Exposure

    Managed XDR & SecOps

    • Fusion MXDR
    • Configuration & Managed Services

    Microsoft Security Solutions

    • Threat Protection & Cloud Security
    • Data Security, Compliance & Privacy
    • Identity & Endpoint Management
    • AI Safety & Security
    • Microsoft Security Foundations
  • Partners
  • News & Resources
    • All resources
    • Flash-Notices
    • Blogs
    • Webinars

    Latest resource

    Building Trust Over Time: SOC 2 and the Importance of Annual Audits

    Business relationships are founded on trust, and in today’s digital world, trust around data security is especially critical.

    Learn more
  • Contact
    • About Us
    • Leadership
    • Careers
  • Governance, Risk & Compliance

    • Compliance Audit & Risk Assessment
    • Compliance Program Development
    • Continuous Compliance & Policy Management

    Attack Surface Management

    • Tool Consolidation & Optimization
    • Configuration & Deployment
    • Testing & Exposure

    Managed XDR & SecOps

    • Fusion MXDR
    • Configuration & Managed Services

    Microsoft Security Solutions

    • Threat Protection & Cloud Security
    • Data Security, Compliance & Privacy
    • Identity & Endpoint Management
    • AI Safety & Security
    • Microsoft Security Foundations
  • Partners
    • All resources
    • Flash-Notices
    • Blogs
    • Webinars
  • Contact

Your header 1 goes here

 | May 27, 2025

Flash Notice: WordPress Review Plugin Local File Inclusion

CVE-2025-2158 is a high-severity LFI vulnerability affecting the WordPress Review Plugin: The Ultimate Solution for Building a Review Website.
 | May 16, 2025

Flash Notice: Azure Information Disclosure Vulnerability

CVE-2025-33072 is a high-severity information disclosure vulnerability in Microsoft Azure resulting from improper access control on a web service endpoint.
 | May 16, 2025

Flash Notice: Azure Automation Privilege Elevation Vulnerability

CVE-2025-29827 is a critical vulnerability affecting Microsoft's Azure Automation service.
 | May 9, 2025

Flash Notice: Codeastro Bus Ticket Booking System SQL Injection Vulnerability

CVE-2025-25775 is a critical SQL injection vulnerability identified in Codeastro Bus Ticket Booking System v1.0.
 | May 9, 2025

Flash Notice: Critical Object Injection in FluentBoards

CVE-2025-39551 is a critical deserialization vulnerability in FluentBoards that permits Object Injection via the unsafe deserialization of untrusted data.
 | May 8, 2025

Flash Notice: SAP NetWeaver Visual Composer Remote Code Execution Vulnerability

CVE-2025-31324 is a critical vulnerability affecting the SAP NetWeaver Visual Composer's Metadata Uploader component, which lacks proper auth controls.
 | May 8, 2025

Flash Notice: GoldenDB DDE Injection Vulnerability

CVE-2025-46579 is a high-severity Dynamic Data Exchange (DDE) injection vulnerability affecting ZTE's GoldenDB database product.
 | May 8, 2025

Flash Notice: Microsoft Dynamics Information Disclosure

CVE-2025-30391 is a high-severity information disclosure vulnerability within Microsoft Dynamics.
 | Apr 7, 2025

Flash Notice: Ivanti Stack-Based Overflow Leading to RCE

CVE-2025-22457 is a critical stack-based buffer overflow vulnerability affecting Ivanti Connect Secure, Pulse Connect Secure, and Ivanti Policy Secure
 | Apr 1, 2025

Flash Notice: Kubernetes Ingress NGINX Controller Vulnerability

CVE-2025-1974 is a critical vulnerability in the Kubernetes Ingress NGINX Controller that permits unauthenticated remote code execution (RCE).
Prev 1 2 3 4 5 Next
Cybersecurity Solutions
  • Governance, Risk, + Compliance (GRC)
  • Attack Surface Management (ASM)
  • Managed XDR & SecOps
  • Microsoft Security Solutions
Company
  • About Avertium
  • Partners
  • Leadership Team
  • Careers
  • Resources
  • Contact
  • Privacy and Legal

Sign up for weekly Flash Notices, tips and security news.

Have questions? Give us a call at 877-707-7997.

logo
Avertium Cyber Fusion Centers
Arizona • Tennessee

Copyright © 2025 Avertium.
All Rights Reserved. Privacy Policy