888.624.6737

syse-blog-header

SECURITY ALERT: FortiClient EMS - (CVE-2023-48788 & CVE-2023-47534)

March 15, 2024

Systems Engineering is aware of two vulnerabilities, the Fortinet FortiClient EMS Pervasive SQL injection in DAS component (CVE-2023-48788) and FortiClient EMS - CSV injection in the log download feature (CVE-2023-47534).

Read More »

Security Bulletins & Alerts

SECURITY ALERT: Cisco Expressway Series Cross-Site Request Forgery Vulnerabilities

February 09, 2024

Systems Engineering is aware of the group of Cisco Expressway Series Cross-Site Request Forgery Vulnerabilities, CVE: CVE-2024-20252.  

Read More »

Security Bulletins & Alerts

SECURITY ALERT: FortiOS Critical Remote Code Execution (CVE-2024-21762 & CVE-2024-23113)

February 09, 2024

Systems Engineering is aware of two Critical Vulnerabilities, the Fortinet FortiOS - Out-of-bound Write in sslvpnd (CVE-2024-21762) and FortiOS - Format String Bug in fgfmd (CVE-2024-23113). 

Read More »

Security Bulletins & Alerts

SECURITY BULLETIN: Microsoft to Start Enforcing Multifactor Authentication

February 06, 2024

Beginning this month, February 2024, Microsoft will start enforcing certain Conditional Access policies automatically for all Microsoft 365 and Office 365 customers. More details are provided below.

Read More »

Security Bulletins & Alerts

SECURITY ALERT: Cisco Unified Communications Products Remote Code Execution Vulnerability

January 27, 2024

Systems Engineering is aware of the Cisco Unified Communications Products Remote Code Execution Vulnerability, CVE: CVE-2024-20253. 

Read More »

Security Bulletins & Alerts

SECURITY ALERT: Citrix NetScaler ADC and Gateway Zero-Day Vulnerabilities

January 19, 2024

Systems Engineering is aware of the vulnerabilities recently found in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway). Exploits on unmitigated appliances have been observed. 

Read More »

Security Bulletins & Alerts

SECURITY ALERT: Cisco Unity Connection Unauthenticated Arbitrary File Upload Vulnerability: CVE-2024-20272

January 12, 2024

Systems Engineering is aware of the Cisco Unity Connection Unauthenticated Arbitrary File Upload Vulnerability, CVE: CVE-2024-20272. 

Read More »

Security Bulletins & Alerts