CISA on Thursday ordered government agencies to prioritize patching two actively exploited vulnerabilities in the Fortinet FortiSandbox threat detection platform.

Fortinet, Ivanti, and ServiceNow have released patches for 15 vulnerabilities, including a critical remote code execution bug.

CISA urges immediate patching of five SharePoint vulnerabilities, including three that are actively exploited in the wild.