Rapid responses

runZero’s Rapid Response program provides immediate detection and notification of emerging threats. Each Rapid Response includes a query to find matching assets, a trigger to analyze all inventories for exposure, and a corresponding blog post with the details of the issue. This program focuses on helping customers mitigate exposures before compromise.

Vulnerabilities covered by the Rapid Response program are replaced by more specific coverage as mitigations become available.

Latest Rapid Responses

Date	Name	Type	Severity	Query	US SaaS Link	EU SaaS Link
08/20/2025	Rapid Response: Trend Micro Apex One OS Command Injection Vulnerabilities	services	Info	`_asset.protocol:http AND protocol:http AND has:html.body AND html.body:"officescan/console/html/cgi/cgiChkMasterPwd.exe"`	Link	Link
08/15/2025	Rapid Response: Plex Media Server 1.41.7.X To 1.42.0.X < 1.42.1 Undisclosed Vulnerability	software	Info	`vendor:=Plex AND product:="Media Server"`	Link	Link
08/14/2025	Rapid Response: Multiple Vulnerabilities In N-Able N-Central	services	Info	`_asset.protocol:http AND protocol:http AND has:html.title AND html.title:="N-central Login Redirect"`	Link	Link
08/14/2025	Rapid Response: Fortinet FortiWeb Authentication Bypass (CVE-2025-52970)	software	Info	`vendor:=Fortinet AND product:=FortiWeb`	Link	Link
08/13/2025	Rapid Response: Fortinet FortiSIEM OS Command Injection (CVE-2025-25256)	services	Info	`_asset.protocol:http AND protocol:http AND has:favicon.ico.image.mmh3 AND favicon.ico.image.mmh3:="-1341442175"`	Link	Link
08/04/2025	Rapid Response: Squid URN Handling Buffer Overflow (CVE-2025-54574)	software	Critical	`vendor:"Squid Cache" and product:"Squid" and version:>0 AND version:<6.4`	Link	Link
08/01/2025	Rapid Response: SUSE Multi-Linux Manager WebSocket RCE (CVE-2025-46811)	services	Info	`_asset.protocol:http AND protocol:http AND has:html.title AND html.title:="SUSE%Manager - Sign In"`	Link	Link
07/30/2025	Rapid Response: Barracuda Message Archiver Reflected XSS (CVE-2025-8319)	services	Info	`_asset.protocol:http AND protocol:http AND has:last.http.body AND last.http.body:"/css/archiver.css" AND last.http.body:"barracuda_info"`	Link	Link
07/30/2025	Rapid Response: Multiple Vulnerabilities In RUCKUS Networks Management Products	services	Info	`_asset.protocol:http AND protocol:http AND has:last.html.title AND (last.html.title:"Virtual SmartZone" OR last.html.title:"Ruckus Wireless")`	Link	Link
07/28/2025	Rapid Response: Multiple Vulnerabilities In Tridium Niagara	assets	Info	`os:Tridium hw:Niagara`	Link	Link
07/24/2025	Rapid Response: Multiple Vulnerabilities In SonicWall SMA 100 Series Products	assets	Info	`hw:="SonicWall SMA100"`	Link	Link
07/20/2025	Rapid Response: Multiple Vulnerabilities In Microsoft SharePoint Server	software	Info	`vendor:="Microsoft" AND product:="SharePoint Server%"`	Link	Link

Updated August 20, 2025

Previous: Exposure management Next: Query library