These are the security notices from 2025‑12‑16

AL25‑019 – Fortinet FortiCloud SSO Login Authentication Bypass (CVE‑2025‑59718 & CVE‑2025‑59719)
Severity: Critical (CVSS 9.8) – the flaws allow unauthenticated attackers to bypass FortiCloud single‑sign‑on and gain administrative access.
Recommended actions:

• Apply the Fortinet patches released on December 9, 2025.
• If you cannot patch immediately, temporarily disable the FortiCloud SSO login feature.
• Review firewall configurations for signs of compromise and rotate any exposed credentials.

AV25‑841 – Red Hat Enterprise Linux Kernel Vulnerabilities
Severity: Important to Critical – multiple kernel bugs affect several Red Hat Enterprise Linux releases and could lead to privilege escalation or denial‑of‑service.
Recommended actions:

• Install the latest Red Hat security updates for the affected kernel packages as soon as they become available, malware.news.
• Restart affected systems after updating to ensure the patched kernel is loaded.
• Monitor system logs for unusual activity and verify that no unapproved modules are loaded.

If your organization needs help applying these patches, assessing the impact, or addressing any other software security concerns, Azzurro Technology Inc. can assist – free of charge. Reach us at info@azzurro.tech.