FortiOS & Atlassian Confluence Actively Exploited (CVE-2024-21762 / CVE-2023-22527)

Scope: Fortinet FortiOS/FortiProxy, Atlassian Confluence

Severity: Red

Two actively exploited vulnerabilities, an out-of-bounds write RCE in Fortinet FortiOS/FortiProxy and a template injection RCE in Atlassian Confluence are being leveraged by attackers to execute arbitrary code, bypass authentication, deploy ransomware, and move laterally across enterprise networks. Both vulnerabilities have seen confirmed in-the-wild exploitation, making immediate patching critical. Organizations should restrict external access to VPN and application interfaces and enforce least privilege with strong authentication across affected systems.

The Uganda National CERT and Coordination Center (CERT.UG/CC) encourages users and administrators to review the recommendations and apply the necessary updates.

RELATED ADVISORIES

Advisories 4 May 2026

Broken VECT 2.0 Ransomware – Destructive Wiper Behavior Observed

Scope: Enterprise Endpoints and File Systems

Severity: Red

Broken VECT 2.0 ransomware has evolved beyond financial extortion, now functioning as a destructive data wiper that corrupts or permanently destroys large files, rendering recovery impossible even after ransom payment. This shift in behavior dramatically increases the impact severity, as organizations face irreversible data loss with no viable recovery path through attacker cooperation. Organizations should ensure secure, offline, and immutable backups are maintained, deploy EDR solutions, enforce MFA for remote access, and segment networks to contain lateral spread.

WordPress Redirect Plugin – Hidden Backdoor Discovered

Advisories 4 May 2026

SAP NPM Supply Chain Compromise – Malicious Packages Stealing Developer Credentials

Advisories 4 May 2026

Axios npm Package Backdoored by North Korean Threat Actor (UNC1069)

Advisories 1 April 2026

Citrix NetScaler ADC/Gateway — Active Exploitation (CVE-2026-3055)

Advisories 1 April 2026

SAP S/4HANA code-injection (CVE-2025-42957) now under active exploitation

Advisories 23 September 2025

Microsoft Exchange 2016 & 2019 Reach End of Support in 30 Days

Advisories 23 September 2025