Systems Engineering is aware of the following vulnerability in Microsoft Outlook, Elevation of Privilege Vulnerability CVE-2023-23397. 

Microsoft rates this vulnerability as CRITICAL. 

Systems Engineering is aware of the following vulnerability in FortiGate Firewalls, FortiOS: CVE-2023-25610 / FG-IR-23-001 | FortiOS / FortiProxy - Heap buffer underflow in the administrative interface.

FortiGuard rates this vulnerability as a CRITICAL RISK.

Systems Engineering is aware of the major security flaw affecting Citrix Virtual Apps and Desktops: CVE-2023-24483.

The vulnerability's severity is rated as HIGH.

Please be aware that cybercriminals are actively distributing malicious spam emails containing Microsoft OneNote attachments. The attachments are disguised to look like shipping notifications, shipping documents, invoices, and other common items.

Systems Engineering is aware of the following heap-based buffer security vulnerability in Fortinet operating systems, FortiOS: CVE-2022-42475 / FG-IR-22-398.

Systems Engineering is aware of the following security vulnerability in Fortinet operating systems, FortiOS: CVE-2022-40684 / FG-IR-22-377.

On Tuesday, August 23, an advisory notification was released by VMware, the virtualization technology software firm, announcing a local privilege escalation vulnerability (CVE-2022-31676). Updates are available to remediate this vulnerability in affected VMware products.