The Cybersecurity and Infrastructure Security Agency (CISA) has issued an advisory warning about several severe vulnerabilities in Contec Health’s CMS8000 Patient Monitor. These flaws could potentially enable remote attacks, privacy breaches, and unauthorized data access. CISA is advising healthcare organizations to remove these devices due to their severity and the risk to patient privacy and infrastructure security.

400+ SAP NetWeaver Devices Vulnerable to 0-Day Attacks that Exploited in the Wild
Shadow Servers have identified 454 vulnerable SAP NetWeaver systems affected by a critical zero-day flaw, CVE-2025-31324, allowing unauthenticated file uploads and potential system compromise. Discovered