You are on the Cert-IST public site

Crisis management HUB
December 11, 2023
High risk
High risk
(*) Excluding RU-UA conflict: The lock does not take into account the risk induced by the RU-UA conflict, although this threat is still present.
Alert level
Last Info
Cisco IOS XE (CVE-2023-20198)       <3 month
Juniper (CVE-2023-36844, ...)       <3 month
Barracuda ESG (CVE-2023-2868)       <6 month
NetScaler (CVE-2023-3519)       <3 month
3CX Desktop App (CVE-2023-29059) >6 months
Outlook (CVE-2023-23397) <1 week
VMware ESXiArgs       >6 months
Russie - Ukraine <3 month
Log4j       >6 months
Exchange (CVE-2021-26855)       >6 months

AL-2023.017 Netscaler ADC and Gateway

Cisco IOS XE (CVE-2023-20198) HdC

AL-2023.014 Sharepoint
Latest public releases
07-May-2023 Russia-Ukraine: One year of war
This article comes from the Cert-IST monthly bulletin n°305 (February 2023).
15-Feb-2023 Annual review regarding vulnerabilities and attacks for 2022

Now available in ENGLISH!
Cert-IST has made public its Annual review regarding vulnerabilities and attacks for 2022.
07-Jan-2023 FIRST Cyber Threat Intelligence 2022 conference in Berlin
This article comes from the Cert-IST monthly bulletin n°301 (October 2022).
02-Jan-2023 FORUM Cert-IST 2022

Presentation materials (in French) are available
08-Dec-2022 Attacks on MFA
This article comes from the Cert-IST monthly bulletin n°300 (September 2022).
07-Sep-2022 SSTIC 2022 conference report
This article comes from the Cert-IST monthly bulletin n°297 (June 2022).
07-Aug-2022 Report for the Botconf 2022 conference
This article comes from the Cert-IST monthly bulletin n°296 (May 2022).
Advisory exemples sent the previous week.
Risk Medium AV-2023.2145 - Vulnerabilities in Wind River Linux
Risk Medium AV-2023.2144 - Vulnerability on IBM AIX and VIOS
Risk Medium AV-2023.2143 - Vulnerabilities in iOS
Risk Medium AV-2023.2142 - Vulnerabilities in MacOS
Risk Medium AV-2023.2141 - Vulnerabilities in the Safari browser