Tag: kev
-
CISA warns of actively exploited Linux privilege elevation flaw
The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has added two vulnerabilities in its Known Exploited Vulnerabilities (KEV) catalog, inc… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisa-warns-of-actively-exploited-linux-privilege-elevation-flaw/
-
CISA adds Check Point Quantum Security Gateways and Linux Kernel flaws to its Known Exploited Vulnerabilities catalog
CISA adds Check Point Quantum Security Gateways and Linux Kernel flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infr… First seen on securityaffairs.com Jump to article: securityaffairs.com/163896/security/cisa-check-point-quantum-security-gateways-linux-kernel-flaws-known-exploited-vulnerabilities-catalog.html
-
NVD Leaves Exploited Vulnerabilities Unchecked
Over half of CISA’s known exploited vulnerabilities disclosed since February 2024 have not yet been analyzed by NIST’s National Vulnerability Database… First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/nvd-exploited-vulnerabilities/
-
The truth about KEV: CISA’s vuln deadlines good influence on private-sector patching
First seen on theregister.com Jump to article: www.theregister.com/2024/05/07/cisas_vulnerability_deadlines/
-
CISA adds years-old Apache Flink bug to KEV catalog
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/cisa-adds-years-old-apache-flink-bug-to-kev-catalog
-
CISA adds Apache Flink flaw to its Known Exploited Vulnerabilities catalog
CISA adds Apache Flink improper access control vulnerability to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure… First seen on securityaffairs.com Jump to article: securityaffairs.com/163635/security/cisa-apache-flink-flaw-known-exploited-vulnerabilities-catalog.html
-
CISA adds NextGen Healthcare Mirth Connect, Google Chrome flaws to KEV list
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/cisa-adds-nextgen-healthcare-mirth-connect-google-chrome-flaws-to-kev-list
-
CISA adds NextGen Healthcare Mirth Connect flaw to its Known Exploited Vulnerabilities catalog
CISA adds NextGen Healthcare Mirth Connect deserialization of untrusted data vulnerability to its Known Exploited Vulnerabilities catalog. The U.S. Cy… First seen on securityaffairs.com Jump to article: securityaffairs.com/163496/security/cisa-adds-nextgen-healthcare-mirth-connect-flaw-known-exploited-vulnerabilities-catalog.html
-
CISA Warns of Attacks Exploiting NextGen Healthcare Mirth Connect Flaw
CISA has added CVE-2023-43208, an unauthenticated remote code execution vulnerability, to its KEV catalog. The post added CVE-2023-43208, an unauthen… First seen on securityweek.com Jump to article: www.securityweek.com/cisa-warns-of-attacks-exploiting-nextgen-healthcare-mirth-connect-flaw/
-
CISA warns of hackers exploiting Chrome, EoL D-Link bugs
The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has added three security vulnerabilities to its ‘Known Exploited Vulnerabilities’ catal… First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisa-warns-of-hackers-exploiting-chrome-eol-d-link-bugs/
-
CISA adds D-Link DIR router flaws to its Known Exploited Vulnerabilities catalog
CISA adds two D-Link DIR-600 and DIR-605 router vulnerabilities to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastruct… First seen on securityaffairs.com Jump to article: securityaffairs.com/163289/security/cisa-d-link-dir-known-exploited-vulnerabilities-catalog.html
-
CISA adds Google Chrome zero-days to its Known Exploited Vulnerabilities catalog
Tags: browser, chrome, cisa, cybersecurity, exploit, google, infrastructure, kev, vulnerability, zero-dayCISA adds two Chrome zero-day vulnerabilities to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agenc… First seen on securityaffairs.com Jump to article: securityaffairs.com/163285/cyber-crime/cisa-google-chrome-zero-day-known-exploited-vulnerabilities-catalog.html
-
CISA Warns of Exploited Vulnerabilities in EOL D-Link Products
CISA has added two vulnerabilities in discontinued D-Link products to its KEV catalog, including a decade-old flaw. The post added two vulnerabilities… First seen on securityweek.com Jump to article: www.securityweek.com/cisa-warns-of-exploited-vulnerabilities-in-eol-d-link-products/
-
Patch Now! CISA Adds Critical Flaws to Exploited Vulnerabilities Catalog
The Cybersecurity and Infrastructure Security Agency (CISA) has recently updated its known exploited vulnerabilities catalog to include three new entr… First seen on thecyberexpress.com Jump to article: thecyberexpress.com/cisa-adds-new-known-exploited-vulnerabilities/
-
Does CISA’s KEV Catalog Speed Up Remediation?
First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/cisa-kev-catalog-speed-up-remediation
-
CISA Warns of Active Exploitation of Severe GitLab Password Reset Vulnerability
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical flaw impacting GitLab to its Known Exploited Vulnerabilities (KE… First seen on thehackernews.com Jump to article: thehackernews.com/2024/05/cisa-warns-of-active-exploitation-of.html
-
Critical GitLab account takeover flaw added to CISA’s KEV Catalog
First seen on scmagazine.com Jump to article: www.scmagazine.com/news/critical-gitlab-account-takeover-flaw-added-to-cisas-kev-catalog
-
Accelerated patching found with CISA KEV catalog-listed flaws
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/accelerated-patching-found-with-cisa-kev-catalog-listed-flaws
-
CISA adds GitLab flaw to its Known Exploited Vulnerabilities catalog
CISA adds GitLab Community and Enterprise Editions improper access control vulnerability to its Known Exploited Vulnerabilities catalog. The U.S. Cybe… First seen on securityaffairs.com Jump to article: securityaffairs.com/162646/security/gitlab-known-exploited-vulnerabilities-catalog.html
-
CISA adds Cisco ASA and FTD and CrushFTP VFS flaws to its Known Exploited Vulnerabilities catalog
CISA adds Cisco ASA and FTD and CrushFTP VFS vulnerabilities to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure… First seen on securityaffairs.com Jump to article: securityaffairs.com/162308/security/cisa-adds-cisco-asa-and-ftd-and-crushftp-vfs-flaws-to-its-known-exploited-vulnerabilities-catalog.html
-
CISA adds Microsoft Windows Print Spooler flaw to its Known Exploited Vulnerabilities catalog
U.S. CISA added the Windows Print Spooler flaw CVE-2022-38028 to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructur… First seen on securityaffairs.com Jump to article: securityaffairs.com/162295/hacking/cisa-adds-microsoft-windows-print-spooler-flaw-to-its-known-exploited-vulnerabilities-catalog.html
-
CISA adds Palo Alto Networks PAN-OS Command Injection flaw to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Palo Alto Networks PAN-OS Command Injection flaw to its Known Exploited Vulnerabilit… First seen on securityaffairs.com Jump to article: securityaffairs.com/161855/hacking/palo-alto-networks-pan-os-bug-known-exploited-vulnerabilities-catalog.html
-
CISA adds D-Link multiple NAS devices bugs to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds D-Link multiple NAS devices bugs to its Known Exploited Vulnerabilities catalog. The… First seen on securityaffairs.com Jump to article: securityaffairs.com/161739/security/cisa-d-link-multiple-nas-devices-bugs-known-exploited-vulnerabilities-catalog.html
-
VulnCheck bug listing to help track new threats quicker
Exploit intelligence firm VulnCheck launches a proprietary Known Exploited Vulnerabilities catalogue in hopes of improving end-user access to intel on… First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366571555/VulnCheck-bug-listing-to-help-track-new-threats-quicker
-
CISA adds FortiClient EMS, Ivanti EPM CSA, Nice Linear eMerge E3-Series bugs to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds FortiClient EMS, Ivanti EPM CSA, Nice Linear eMerge E3-Series bugs to its Known Expl… First seen on securityaffairs.com Jump to article: securityaffairs.com/161057/security/cisa-adds-forticlient-ems-ivanti-epm-csa-nice-linear-emerge-e3-series-bugs-to-its-known-exploited-vulnerabilities-catalog.html
-
Three flaws added to CISA’s known exploited vulnerabilities catalog
First seen on scmagazine.com Jump to article: www.scmagazine.com/brief/three-flaws-added-to-cisas-known-exploited-vulnerabilities-catalog
-
CISA Adds JetBrains TeamCity Vulnerability To KEV Catalog
The US Cybersecurity and Infrastructure Security Agency (CISA) has flagged a critical JetBrains TeamCity vulnerability, emphasizing the urgent need fo… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/03/cisa-adds-jetbrains-teamcity-vulnerability-to-kev-catalog/
-
Beware the Ides of March 2024: Analyzing CISA KEV Data to Understand Danger
In our continuing series on the CISA Known Exploited Vulnerabilities (KEV) catalog, we provide an update on the landscape of cyber threats as it has e… First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/03/beware-the-ides-of-march-2024-analyzing-cisa-kev-data-to-understand-danger/
-
Only 13% of medical devices support endpoint protection agents
63% of CISA-tracked Known Exploited Vulnerabilities (KEVs) can be found on healthcare networks, while 23% of medical devices”including imaging devices… First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/03/14/medical-devices-cybersecurity-concerns/
-
CVE-2022-48618: Apple Flaw in macOS, iOS Actively Exploited
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) recently added a high-severity flaw to its Known Exploited Vulnerabilities (KEV) cata… First seen on sensorstechforum.com Jump to article: sensorstechforum.com/cve-2022-48618-macos-ios/