Fix Impact

Author: vs-mg

src/content/docs/waf/change-log/2025-05-27.mdx

@@ -25,9 +25,7 @@ This week’s roundup covers nine vulnerabilities, including six critical RCEs a
 
 **Impact**
 
-These newly detected vulnerabilities introduce critical risk across modern web stacks, AI infrastructure, and content platforms: unauthenticated RCEs in Commvault, BentoML, and Craft CMS enable full system compromise with minimal attacker effort.
-
-Apache HTTPD information leak can support targeted reconnaissance, increasing the success rate of follow-up exploits. Organizations using these platforms should prioritize patching and monitor for indicators of exploitation using updated WAF detection rules.
+These vulnerabilities expose critical infrastructure to unauthenticated RCE, auth bypass, and information leaks across Kubernetes, CI/CD, and enterprise systems. Threats range from full system compromise in F5 BIG-IP, Craft CMS, and NAKIVO Backup to mobile device takeover via Ivanti EPMM. GitHub Actions and Vercel flaws further enable supply chain attacks and targeted recon. Urgent patching and updated detection are essential to mitigate active exploitation.
 
 <table style="width: 100%">
 	<thead>