Cisco has issued a patch for a security flaw in its ClamAV anti-malware scanner that created serious risk for its Secure Web Appliance and Secure Endpoint products. The vulnerability, discovered by a Google engineer, allowed potential attackers to inject malicious code into endpoints or vulnerable Secure Web Appliances. The flaw was not under active attack but patching is recommended. ClamAV, acquired by Cisco a decade ago, is primarily used on mail servers.

Mandiant warns of attacks on newly-disclosed Ivanti remote takeover threat
Google’s Mandiant team has issued an alert about a remote code execution flaw in the Ivanti Connect Secure VPN platform. The vulnerability, designated CVE-2025-22457, is