Alerts and Vulnerabilities – Critical Path Security

Stay current with real-time updates from Critical Path Security and Canada’s Cyber Centre, including the latest vulnerabilities, zero‑day threats, and vendor security advisories. Each alert includes actionable guidance and indicators of compromise to help secure your infrastructure.

Recent highlights include:

Microsoft Edge security advisory (AV25-810)
Source: Alerts and advisories Published on 2025-12-05
HPE security advisory (AV25-809)
Source: Alerts and advisories Published on 2025-12-05
Samsung mobile security advisory (AV25-808)
Source: Alerts and advisories Published on 2025-12-04
AL25-018 - Vulnerability affecting React Server Components - CVE-2025-55182
Source: Alerts and advisories Published on 2025-12-04
HPE security advisory (AV25-807)
Source: Alerts and advisories Published on 2025-12-04
Drupal security advisory (AV25-806)
Source: Alerts and advisories Published on 2025-12-04
Splunk security advisory (AV25-805)
Source: Alerts and advisories Published on 2025-12-03
React security advisories (AV25-804)
Source: Alerts and advisories Published on 2025-12-03
GitHub security advisory (AV25-803)
Source: Alerts and advisories Published on 2025-12-03
Google Chrome security advisory (AV25-802)
Source: Alerts and advisories Published on 2025-12-03
HPE security advisory (AV25-801)
Source: Alerts and advisories Published on 2025-12-02
Apache Struts security advisory (AV25-800)
Source: Alerts and advisories Published on 2025-12-02
Android security advisory – December 2025 monthly rollup (AV25-799)
Source: Alerts and advisories Published on 2025-12-02
OpenVPN security advisory (AV25-798)
Source: Alerts and advisories Published on 2025-12-02
Qualcomm security advisory – December 2025 monthly rollup (AV25-797)
Source: Alerts and advisories Published on 2025-12-01