CVE-2023-39780 SolarWinds Web Help Desk Mozilla CVE-2023-6317 CVE-2023-6318 CVE-2025-30401 MITRE Corp CVE Foundation CVE-2021-20038 Cooperation CVE-2024-43047 CVE-2024-51978
GTIG released indicators of compromise with detection guidance after confirming UNC6148 exploited patched SMA 100 series VPNs to install a stealth boot-process rootkit.