A critical zero day flaw in all version of MOVEit Transfer is under active attack by multiple threat actors.
A critical remote code execution vulnerability has been fixed in the ClamAV anti-malware engine.
OpenText has fixed two remote code execution vulnerabilities in its Extended ECM content management server.
Active exploitation of the CVE-2022-47966 ManageEngine flaw is underway.
Thousands of internet-exposed servers remain vulnerable to the critical-severity ConnectWise flaw.