CISA Warns of Actively Exploited Brocade, Commvault, and Qualitia Active! Mail Vulnerabilities (CVE-2025-1976, CVE-2025-3928, and CVE-2025-42599)

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned users about three high-severity vulnerabilities impacting Broadcom Brocade Fabric OS, Commvault Web server, and Qualitia Active! Mail. CISA added the vulnerabilities to its Known Exploited Vulnerabilities Catalog, urging users to patch them before May 19, 2025.

FortiOS and FortiProxy Stack-based Buffer Overflow Vulnerability (CVE-2023-33308)

Fortinet has addressed a critical severity vulnerability affecting FortiOS and FortiProxy. CVE-2023-33308 has been given a critical severity rating with a CVSSv3 score of 9.8. Successful exploitation of the vulnerability will allow a remote attacker to execute arbitrary code on target systems. The brain of Fortinet Security Fabric is its network operating system, FortiOS. The Security … Continue reading “FortiOS and FortiProxy Stack-based Buffer Overflow Vulnerability (CVE-2023-33308)”