Known Vulnerabilities

Critical Insight periodically sends out known vulnerabilities that may impact our user base. We have compiled them below.

vCISO
CVE-2024-22024 (XXE) for Ivanti Connect Secure and Ivanti Policy Secure

CVE-2024-22024 (XXE) for Ivanti Connect Secure and Ivanti Policy Secure

February 13, 2024 1 min read
CVE-2024-21762 - FortiOS Out of bounds write vulnerability / CVE-2024-23113 FortiOS format string vulnerability

CVE-2024-21762 - FortiOS Out of bounds write vulnerability / CVE-2024-23113 FortiOS format string vulnerability

February 12, 2024 3 min read
CVE-2023-40547 - Linux shim bootloader vulnerability

CVE-2023-40547 - Linux shim bootloader vulnerability

February 7, 2024 1 min read
CVE-2024-21620 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability in J-Web

CVE-2024-21620 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability in J-Web

January 29, 2024 1 min read
CVE-2024-20272- Cisco Unity Connection Unauthenticated Arbitrary File Upload Vulnerability

CVE-2024-20272- Cisco Unity Connection Unauthenticated Arbitrary File Upload Vulnerability

January 25, 2024 1 min read
CVE-2023-34063 - VMWare Aria Automation Remote Access Authorization Vulnerability

CVE-2023-34063 - VMWare Aria Automation Remote Access Authorization Vulnerability

January 18, 2024 1 min read
CVE-2023-22527 - RCE vulnerability in Confluence Data Center and Confluence Server

CVE-2023-22527 - RCE vulnerability in Confluence Data Center and Confluence Server

January 18, 2024 1 min read
CVE-2024-21591 - Out of bounds write vulnerability Juno OS SRX and EX Series

CVE-2024-21591 - Out of bounds write vulnerability Juno OS SRX and EX Series

January 16, 2024 1 min read
CVE-2024-21887 & CVE-2023-46805 Ivanti Connect Secure and Policy Secure Gateways Zero Day Vulnerabilities

CVE-2024-21887 & CVE-2023-46805 Ivanti Connect Secure and Policy Secure Gateways Zero Day Vulnerabilities

January 11, 2024 1 min read
CVE-2023-22522, 2023-22524, 2023-22523, 2022-1471 - Atlassian Releases Security Advisories for Multiple Products

CVE-2023-22522, 2023-22524, 2023-22523, 2022-1471 - Atlassian Releases Security Advisories for Multiple Products

December 8, 2023 3 min read