Citrix released patches for critical vulnerabilities in Gateway and NetScaler ADC – deployment of updates should be prioritized given that both products are typically deployed in perimeter protection architectures.
LiteLLM contains critical SQL injection and code execution vulnerabilities that allow complete database access and remote code execution as a system service.
FortiGate devices with enabled SSL-VPN were compromised through three critical vulnerabilities, allowing attackers to install backdoors and gain read access to file systems; up to 840 devices in Austria are affected, and Fortinet has released patches and remediation measures.