**CRITICAL RISK** CVE-2023-4911 GNU/Linux Operating Systems – Unauthorised Execution of Arbitrary Code via Buffer Overflow Exploit (a.k.a. “Looney Tunables”)
**CRITICAL RISK** CVE-2023-5631 Roundcube Webmail < v1.6.4 – Stored (Persistent) Cross-Site Scripting (‘XSS’) via JavaScript Injection in SVG Tags
**CRITICAL RISK** CVE-2023-4966 Cloud Software Group (Citrix) NetScaler ADC and NetScaler Gateway – Unauthorised Access to Critical Data and Credentials due to Improper Restriction of Operations within the Bounds of a Memory Buffer
**CRITICAL RISK** CVE-2023-21608 Adobe Acrobat (Multiple Editions) – Arbitrary Code Execution via ‘Use After Free’ (Memory Access Violation) Vulnerability in resetForm Method
**CRITICAL RISK** CVE-2023-36563 Microsoft Windows (Multiple Editions) – Disclosure of Sensitive NTLM Hashes via WordPad
