Multiple vulnerabilities have been found in the Cisco Services Engine, including Arbitrary File Upload and Denial of Service issues. The identified vulnerabilities range in severity between 4.3 (Medium) and 4.7 (Medium). Cisco has released a security advisory and patches to address these vulnerabilities. They were initially identified in the Cisco Identity Services Engine, an identity and access control policy platform. Users are recommended to upgrade to fixed versions to avoid exploitation.

Microsoft Defender Vulnerability Allows Attackers to Elevate Privileges
A newly revealed flaw in Microsoft Defender for Endpoint (CVE-2025-26684) allows local attackers to escalate privileges to SYSTEM level, gaining complete control of affected systems.