Security Advisories

BullWall publishes security advisories to communicate information about vulnerabilities and security fixes affecting BullWall products and services.

Each advisory provides details on the issue, affected versions, severity, and recommended remediation steps. Customers should review advisories to determine applicability to their environment and take appropriate action.

If you believe you have discovered a security vulnerability in a BullWall product, please report it responsibly by contacting: security@bullwall.com

SIP initializes after login services, allowing post-boot login before MFA enforcement.
View Detail
View Detail
Advisory ID
BWD-2026-005
publish date
January 15, 2026
Severity
High
CVE
CVE-2025-62004
Single-file encryption may not trigger detection due to reliance on modification thresholds.
View Detail
View Detail
Advisory ID
BWD-2026-003
publish date
January 15, 2026
Severity
Medium
CVE
CVE-2025-62002
Excluded paths (e.g. $RECYCLE.BIN) allow detection bypass by renaming a directory.
View Detail
View Detail
Advisory ID
BWD-2026-002
publish date
January 15, 2026
Severity
High
CVE
CVE-2025-62001
Encrypting a file while leaving the first four bytes unaltered bypasses detection.
View Detail
View Detail
Advisory ID
BWD-2026-001
publish date
January 15, 2026
Severity
Medium
CVE
CVE-2025-62000
Delay before MFA enforcement on RDP connections.
View Detail
View Detail
Advisory ID
BWD-2026-004
publish date
January 15, 2026
Severity
High
CVE
CVE-2025-62003
CTA Image

How confident are you in your ransomware response?
Find out for sure.

Talk to an expert
arrow
Talk to an expert
arrow
Products
Industries
Company
Resources
Privacy PolicyTerms & ConditionsCSRCookie PolicyModern Slavery ActWhistleblowerXML Sitemap
© BullWall 2026