A critical remote code execution vulnerability has been fixed in the ClamAV anti-malware engine.
OpenText has fixed two remote code execution vulnerabilities in its Extended ECM content management server.
Active exploitation of the CVE-2022-47966 ManageEngine flaw is underway.
Thousands of internet-exposed servers remain vulnerable to the critical-severity ConnectWise flaw.
Mass exploitation of a new Fortinet authentication bypass flaw (CVE-2022-40684) is ongoing and proof of concept exploits are available.