CSA

SingCERT has received multiple reports of scammers impersonating CSA officers and the Police using fake court orders sent through fraudulent emails. Read the alert here. csa.gov.sg/alerts-advisor…

A critical software supply chain compromise has been identified affecting the widely used JavaScript HTTP client Axios. Organisations using affected versions of the product are advised to assess their systems and networks for potential compromise. 🔗: csa.gov.sg/alerts-and-adv…

Security researchers have identified an ongoing supply-chain campaign compromising open-source projects to distribute malware. Organisations using affected components of such projects are advised to assess their environments for potential compromise. 🔗: csa.gov.sg/alerts-and-adv…

TP-Link has released security updates addressing multiple vulnerabilities affecting TP-Link Archer products. Users and administrators of affected products are advised to update to the latest versions immediately. Read the alert here: csa.gov.sg/alerts-and-adv…

Citrix has released security updates to address two vulnerabilities affecting NetScaler ADC and NetScaler Gateway. Users and administrators of affected products are advised to update to the latest versions immediately. 🔗: csa.gov.sg/alerts-and-adv…

Ubiquiti has released software updates addressing multiple vulnerabilities in Ubiquiti UniFi Network Application. Users and administrators of affected products are advised to update to the latest version immediately. Read the alert here: csa.gov.sg/alerts-and-adv…

Oracle has released security updates to address a critical vulnerability in Oracle Web Services Manager and Identity Manager. Users and administrators of affected products are advised to update to the latest versions immediately. Read the alert here: csa.gov.sg/alerts-and-adv…

CSA wishes all our Muslim friends Selamat Hari Raya Aidilfitri 🌙✨. May this occasion be filled with meaningful moments together.

Fortinet has released a security advisory addressing multiple vulnerabilities across its core enterprise products. Users and administrators of affected products are advised to update to the latest versions immediately. 🔗: csa.gov.sg/alerts-and-adv…

Hewlett Packard Enterprise (HPE) has released software patches to address multiple security vulnerabilities in the Aruba Networking AOS-CX operating system. Users and administrators are advised to update to the latest versions immediately. 🔗: csa.gov.sg/alerts-and-adv…

Cisco has released security updates to address multiple maximum-severity vulnerabilities in its Secure Firewall Management Center software. Users and administrators of affected product versions are advised to update to the latest version immediately. 🔗 csa.gov.sg/alerts-and-adv…

⚠️ Juniper has patched a critical flaw in Junos OS Evolved (PTX Series) 🌐. Users & admins should update immediately 🔒. 🔗 csa.gov.sg/alerts-and-adv…

🚨 Active exploitation of a critical authentication bypass flaw in Cisco Catalyst SD-WAN. Users & admins should upgrade to a fixed release immediately 🔒. 🔗 csa.gov.sg/alerts-and-adv…

⚠️ SolarWinds has patched multiple critical flaws in Serv-U 💻. Users & admins should update immediately 🔒. 🔗 csa.gov.sg/alerts-and-adv…

⚠️ Microsoft has disclosed a privilege-escalation flaw (CVE-2026-26119) in Windows Admin Center 💻. Users & admins should update immediately 🔒. 🔗 csa.gov.sg/alerts-and-adv…

Dell has released security updates to address a critical vulnerability affecting their "RecoverPoint for Virtual Machines" product. Users and administrators of affected product versions are advised to update to the latest version immediately. 🔗: csa.gov.sg/alerts-and-adv…

Fortinet has released software updates addressing multiple vulnerabilities in FortiSandbox and FortiOS. Users and administrators of affected products are advised to update to the latest versions immediately. 🔗: csa.gov.sg/alerts-and-adv…

Fortinet has released security updates to address a critical SQL injection vulnerability in FortiClientEMS. Users and administrators of affected versions are advised to update to the latest version immediately. 🔗: csa.gov.sg/alerts-and-adv…

The Kubernetes project has released software updates addressing multiple vulnerabilities in Ingress NGINX controller. Users and administrators of affected products are advised to update to the latest version immediately. 🔗 :csa.gov.sg/alerts-and-adv…

⚠️ n8n has patched a critical flaw in its open-source workflow automation platform 💻. Users & admins should update immediately 🔒. 🔗 csa.gov.sg/alerts-and-adv…

SolarWinds has released security updates to address multiple critical vulnerabilities in their SolarWinds Web Help Desk. Users and administrators of affected products are advised to update to the latest version immediately. Read the alert here: csa.gov.sg/alerts-and-adv…