Splunk has released patches for a high-severity Remote Code Execution (RCE) vulnerability (CVE-2025-20229) affecting Splunk Enterprise and Cloud versions prior to specified updates. Additionally, a separate vulnerability (CVE-2025-20231) in the Splunk Secure Gateway app could expose sensitive information. Users are urged to upgrade to secure versions and remain vigilant about security updates.
RESURGE Malware Exploits Ivanti Flaw with Rootkit and Web Shell Features
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has revealed a new malware named RESURGE. Deployed in exploiting Ivanti Connect Secure appliances’ patched security flaw,
