The Cert-IST 2026 annual report on vulnerabilities and attacks in 2025 is now available (only in French for the moment).
You are on the
PUBLIC
PRIVATE
site
The CERT dedicated to the Industry, Services and Tertiary community
First center for alert and reaction to computer attacks
+2 100
NOTICES / YEAR
+7 800
NOTICE UPDATES / YEAR
+16
ALERTS / YEAR
+3 100
PRODUCTS MONITORED
+33 000
ASSOCIATED VERSIONS
Alert level
March 25, 2026
High risk
(*)Excluding RU-UA conflict: The lock does not take into account the risk induced by the RU-UA conflict, although this threat is still present.
-
{##}
AL-2026.005 Cisco Catalyst SD-WAN
-
AL-2026.004 BeyondTrust RS, PRA
Crisis Management Hub
Israel-US-Iran-Conflict
Alert Level
Update Info
<1 week
Cisco Catalyst SD-WAN
Alert Level
Update Info
<1 week
React2Shell
Alert Level
Update Info
<3 month
Oracle EBS (CVE-2025-61882)
Alert Level
Update Info
<6 month
Netscaler #CitrixDeelb
Alert Level
Update Info
>6 months
SharePoint #ToolShell
Alert Level
Update Info
>6 months
NetScaler (CitrixBleed2, etc)
Alert Level
Update Info
>6 months
Examples of advisories issued the previous week
Vulnerability in MantisBT
AV-2026.0596
Vulnerability in OpenCTI
AV-2026.0595
Vulnerabilities in the Schneider Electric Modicon product (SCADA)
AV-2026.0594
Vulnerabilities in Veeam Backup and Replication
AV-2026.0593
Vulnerability in "sudo" on Linux/Unix
AV-2026.0592
Cert-IST publications
Cert-IST 2026 report on attacks and vulnerabilities in 2025
Our annual report will soon be available in English
06-Mar-2026
Cert-IST 2025 report on attacks and vulnerabilities in 2024
Our Annual report is now available in English!
19-Feb-2025
