Table of Contents
Additional Resources:
In this week’s Security Advisory
- Fortinet Patches Multiple Vulnerabilities
- SAP Patches Critical Flaws That Could Allow Remote Code Execution
- Microsoft’s July Patch Tuesday Release
- Security Updates for Adobe and Mozilla Thunderbird
Fortinet Patches Multiple Vulnerabilities
Fortinet released patches for eight vulnerabilities. The most severe, CVE-2025-25257 (CVSS 9.6/10), is an SQL injection in FortiWeb that can be exploited without authentication. Fortinet has made no mention of whether any of these are exploited in the wild.
Of note, CyberMaxx has already taken steps to globally mitigate our equipment against these vulnerabilities.
Affected Versions
- A full list of affected versions can be found here.
Recommendations
- Apply the latest patches.
More Reading / Information
- https://www.securityweek.com/ivanti-fortinet-splunk-release-security-updates/
- https://www.fortiguard.com/psirt
SAP Patches Critical Flaws That Could Allow Remote Code Execution
SAP announced the release of 27 new and four updated security notes, including six that address critical vulnerabilities. The most severe vulnerability, CVE-2025-30012 (CVSS updated from 3.9 to 10.0), has been determined to allow abuse by unauthenticated attackers to execute arbitrary OS commands with administrative privileges.
Affected Versions
- A full list of affected versions can be found here.
Recommendations
- Please update to the applicable patched version of the software.
More Reading / Information
- https://www.securityweek.com/sap-patches-critical-flaws-that-could-allow-remote-code-execution-full-system-takeover/
- https://support.sap.com/en/my-support/knowledge-base/security-notes-news/july-2025.html
Microsoft’s July Patch Tuesday Release
Microsoft has released its Patch Tuesday for the month of July. This includes security updates for 137 vulnerabilities, among them a publicly disclosed zero-day flaw in Microsoft SQL Server (CVE-2025-49719) CVSS 7.5/10. The update also addresses 14 Critical vulnerabilities, including 10 remote code execution flaws, one information disclosure issue, and two AMD side-channel attack vulnerabilities.
Affected Versions
- Windows Components: Windows Kernel, Windows BitLocker, Windows SSDP Service, Windows Hyper-V, and Windows Routing and Remote Access Service (RRAS).
- Microsoft Office Suite: Vulnerabilities in Excel, Word, PowerPoint, and SharePoint, with several allowing RCE or privilege escalation.
- Cloud and Enterprise Services: Azure Monitor Agent, Microsoft Intune, and SQL Server.
- Development Tools: Visual Studio and Visual Studio Code Python extension.
- Browsers: Microsoft Edge (Chromium-based).
Recommendations
- Apply the latest patches.
More Reading / Information
- https://krebsonsecurity.com/2025/07/microsoft-patch-tuesday-july-2025-edition/
- https://www.bleepingcomputer.com/news/microsoft/microsoft-july-2025-patch-tuesday-fixes-one-zero-day-137-flaws/
- https://thehackernews.com/2025/07/microsoft-patches-130-vulnerabilities.html
Security Updates for Adobe and Mozilla Thunderbird
Adobe released patches for 58 vulnerabilities, three of which are rated critical severity affecting its Adobe Connect, ColdFusion, and Experience Manager Forms products. Successful exploitation of these issues could lead to code execution, privilege escalation, security feature bypass, and arbitrary file system read
Mozilla patches multiple vulnerabilities in its Thunderbird product, the most severe of which could lead to remote code execution, crashing, and memory loss.
Recommendations
- Apply the latest patches to any affected Adobe products.
- Upgrade to Mozilla Thunderbird to version 140.
More Reading / Information
Recommendations
Please review your environment to ensure the above-mentioned issues are patched in a timely manner. It is security best practice to regularly update and/or patch software to the latest versions. The vulnerabilities above highlight the security benefits of limiting deployed software to “vendor-supported versions” only. This dramatically increases the likelihood that new vulnerabilities have a patch issued for them. Likewise, CyberMaxx strongly encourages maintaining an inventory of current software in your environment, which helps ensure and inform your patch and vulnerability management program.
