One of the more serious flaws in Ivanti's enterprise mobile device management platform could allow unauthenticated, remote attackers to execute code.
A critical zero day flaw in all version of MOVEit Transfer is under active attack by multiple threat actors.
A critical remote code execution vulnerability has been fixed in the ClamAV anti-malware engine.
OpenText has fixed two remote code execution vulnerabilities in its Extended ECM content management server.
Active exploitation of the CVE-2022-47966 ManageEngine flaw is underway.