SANS Stormcast Wednesday, December 10th, 2025: Microsoft, Adobe, Ivanti, Fortinet, and Ruby patches. (#)

SANS Stormcast Wednesday, December 10th, 2025: Microsoft, Adobe, Ivanti, Fortinet, and Ruby patches. (#)

Author: Johannes B. Ullrich December 10, 2025 Duration: 8:04
SANS Internet Storm Center's Daily Network Security News Podcast
NewsBusiness
SANS Stormcast Wednesday, December 10th, 2025: Microsoft, Adobe, Ivanti, Fortinet, and Ruby patches. Microsoft Patch Tuesday Microsoft released its regular monthly patch on Tuesday, addressing 57 flaws. https://isc.sans.edu/diary/Microsoft%20Patch%20Tuesday%20December%202025/32550 Adobe Patches Adobe patched five products. The remote code execution in ColdFusion, as well as the code execution issue in Acrobat, will very likely see exploits soon. https://helpx.adobe.com/security.html Ivanti Endpoint Manager Patches Ivanti patched four vulnerabilities in End Point Manager. https://forums.ivanti.com/s/article/Security-Advisory-EPM-December-2025-for-EPM-2024?language=en_US Fortinet FortiCloud SSO Vulnerability Due to a cryptographic vulnerability, Forinet's FortiCloud SSO authentication is bypassable. https://fortiguard.fortinet.com/psirt/FG-IR-25-647 ruby-saml vulnerability Ruby fixed a vulnerability in ruby-saml. The issue is due to an incomplete patch for another vulnerability a few months ago. https://github.com/SAML-Toolkits/ruby-saml/security/advisories/GHSA-9v8j-x534-2fx3 keywords: ruby; saml; fortinet; forticloud; sso; ivanti; adobe; microsoft; patches

Each weekday morning, Johannes B. Ullrich provides a concise, actionable briefing on the shifting landscape of digital threats and defenses with SANS Internet Storm Center's Daily Network Security News Podcast. Think of it as your first cup of coffee for cybersecurity awareness-a focused, five-minute update that cuts through the noise. The content is shaped by real-time data and analysis from the SANS Internet Storm Center, enriched by questions and experiences shared directly from the community of professionals in the field. You’ll hear about emerging vulnerabilities, active exploits, and practical insights that are both late-breaking and genuinely educational, all delivered in a straightforward, no-frills manner. This podcast serves as a reliable filter, turning the overwhelming flow of security news into a clear, digestible summary that helps you understand current risks and start your day informed. It’s built on a foundation of shared knowledge, where listener contributions actively guide the discussion, making each episode a collaborative reflection of what matters right now in network security.
Author: Language: English Episodes: 100

Official website RSS
youtubelinkedin
SANS Internet Storm Center's Daily Network Security News Podcast
Podcast Episodes

12345...10»