by Among the vulnerability news this week, the most concerned is the warning from the application vulnerability detection industry that there has been an attack on the XStream CVE-2021-39144 vulnerability in the library. In the vulnerability patch news, Jenkins, Fortinet and Veeam Bug fixes and disclosures are worth noting. In addition, we would like to remind you that, in addition to the above-mentioned XStream vulnerabilities, there are four known vulnerabilities in the past two years regarding the latest exploits. Although the Information Security News has not mentioned this week, they have all been confirmed recently. Lockdown exploits, also of priority, include: Plex Media Server (CVE-2020-5741), Zoho ManageEngine (CVE-2022-28810), Apache Spark (CVE-2022-33891), and Teclib GLPI (CVE-2022- 35914) vulnerability.
