A fresh vulnerability, CVE-2025-25257 (CVSS 9.6) in Fortinet’s FortiWeb Fabric Connector presents high risk globally. Although the CVE is still only in RESERVED status as of July 14th, 2025, it has already received a national CERT advisory from Belgium’s CERT.be and the Center for Internet Security (CIS) has also issued an alert. More alerts should […]
Germany’s Bundesrechnungshof has sharply criticized the current state of cybersecurity in the federal administration. Der Spiegel quotes a document classified as confidential, which concludes that significant parts of the government’s IT infrastructure have serious security flaws and do not meet the minimum requirements of the Federal Office for Information Security (BSI). The Bundesrechnungshof (BRH) is […]
https://www.greenbone.net/wp-content/uploads/greenbone-logo-2025-300x77.png00Markus Feilnerhttps://www.greenbone.net/wp-content/uploads/greenbone-logo-2025-300x77.pngMarkus Feilner2025-07-17 11:29:282025-07-29 13:07:30Massive Weaknesses in Government Data Centers, Says Bundesrechnungshof
In 2025, IT security teams are overwhelmed with a deluge of new security risks. The need to prioritize vulnerability remediation is an ongoing theme among IT security and risk analysts. In a haystack of tasks, finding the needles is imperative. Factors compounding this problem include a cybersecurity talent shortage, novel attack techniques, and the increasing […]
https://www.greenbone.net/wp-content/uploads/greenbone-logo-2025-300x77.png00Joseph Leehttps://www.greenbone.net/wp-content/uploads/greenbone-logo-2025-300x77.pngJoseph Lee2025-07-07 13:30:422025-07-09 15:19:50LEV: Demystifying the New Vulnerability Metrics in NIST CSWP 41
CVE-2025-25257: Urgent Pre-Auth RCE in FortiWeb Fabric Connector
BlogA fresh vulnerability, CVE-2025-25257 (CVSS 9.6) in Fortinet’s FortiWeb Fabric Connector presents high risk globally. Although the CVE is still only in RESERVED status as of July 14th, 2025, it has already received a national CERT advisory from Belgium’s CERT.be and the Center for Internet Security (CIS) has also issued an alert. More alerts should […]
Massive Weaknesses in Government Data Centers, Says Bundesrechnungshof
BlogGermany’s Bundesrechnungshof has sharply criticized the current state of cybersecurity in the federal administration. Der Spiegel quotes a document classified as confidential, which concludes that significant parts of the government’s IT infrastructure have serious security flaws and do not meet the minimum requirements of the Federal Office for Information Security (BSI). The Bundesrechnungshof (BRH) is […]
LEV: Demystifying the New Vulnerability Metrics in NIST CSWP 41
BlogIn 2025, IT security teams are overwhelmed with a deluge of new security risks. The need to prioritize vulnerability remediation is an ongoing theme among IT security and risk analysts. In a haystack of tasks, finding the needles is imperative. Factors compounding this problem include a cybersecurity talent shortage, novel attack techniques, and the increasing […]