CISA Adds 66 Vulnerabilities to Known Exploited Catalog
Share this:
The U.S. CISA has added 66 vulnerabilities to its Known Exploited Vulnerabilities Catalog. According to Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities, FCEB agencies must address the identified vulnerabilities by the due date to protect their networks against attacks exploiting the flaws in the catalog.
Advertisements
Experts recommend also private organizations review the Catalog and address the vulnerabilities in their infrastructure. The new vulnerabilities added to the catalog must be addressed by federal agencies by April 15, 2022.
One of the 66 flaws added to the catalog is the recently discovered Windows CVE-2022-21999 vulnerability, which is a Windows Print Spooler Elevation of Privilege bug. Microsoft addressed this bug with the release of the February 2022 Patch Tuesday updates.
Another issue added to the catalog, tracked as CVE-2022-26318, is an arbitrary code execution in WatchGuard Firebox and XTM Appliances. CISA also added the CVE-2022-26143 vulnerability affecting Mitel MiCollab and MiVoice Business Express that can be exploited by a threat actor to gain unauthorized access to sensitive information and services, cause performance degradations or a denial-of-service condition on the affected system.
Advertisements
| CVE ID | Product | Vulnerability Name |
| CVE-2022-26318 | Firebox and XTM Appliances | WatchGuard Firebox and XTM Appliances Arbitrary Code Execution |
| CVE-2022-26143 | MiCollab, MiVoice Business Express | MiCollab, MiVoice Business Express Access Control Vulnerability |
| CVE-2022-21999 | Windows | Microsoft Windows Print Spooler Privilege Escalation Vulnerability |
| CVE-2021-42237 | XP | Sitecore XP Remote Command Execution Vulnerability |
| CVE-2021-22941 | ShareFile | Citrix ShareFile Improper Access Control Vulnerability |
| CVE-2020-9377 | DIR-610 Devices | D-Link DIR-610 Devices Remote Command Execution |
| CVE-2020-9054 | Multiple Network-Attached Storage (NAS) Devices | Zyxel Multiple NAS Devices OS Command Injection Vulnerability |
| CVE-2020-7247 | OpenSMTPD | OpenSMTPD Remote Code Execution Vulnerability |
| CVE-2020-5410 | Spring Cloud Configuration (Config) Server | VMware Tanzu Spring Cloud Config Directory Traversal Vulnerability |
| CVE-2020-25223 | SG UTM | Sophos SG UTM Remote Code Execution Vulnerability |
| CVE-2020-2506 | Helpdesk | QNAP Helpdesk Improper Access Control Vulnerability |
| CVE-2020-2021 | PAN-OS | Palo Alto PAN-OS Authentication Bypass Vulnerability |
| CVE-2020-1956 | Kylin | Apache Kylin OS Command Injection Vulnerability |
| CVE-2020-1631 | Junos OS | Juniper Junos OS Path Traversal Vulnerability |
| CVE-2019-6340 | Core | Drupal Core Remote Code Execution Vulnerability |
| CVE-2019-2616 | BI Publisher (Formerly XML Publisher) | Oracle BI Publisher Unauthorized Access Vulnerability |
| CVE-2019-16920 | Multiple Routers | D-Link Multiple Routers Command Injection Vulnerability |
| CVE-2019-15107 | Webmin | Webmin Command Injection Vulnerability |
| CVE-2019-12991 | SD-WAN and NetScaler | Citrix SD-WAN and NetScaler Command Injection Vulnerability |
| CVE-2019-12989 | SD-WAN and NetScaler | Citrix SD-WAN and NetScaler SQL Injection Vulnerability |
| CVE-2019-11043 | FastCGI Process Manager (FPM) | PHP FastCGI Process Manager (FPM) Buffer Overflow Vulnerability |
| CVE-2019-10068 | Xperience | Kentico Xperience Deserialization of Untrusted Data Vulnerability |
| CVE-2019-1003030 | Matrix Project Plugin | Jenkins Matrix Project Plugin Remote Code Execution Vulnerability |
| CVE-2019-0903 | Graphics Device Interface (GDI) | Microsoft GDI Remote Code Execution Vulnerability |
| CVE-2018-8414 | Windows | Microsoft Windows Shell Remote Code Execution Vulnerability |
| CVE-2018-8373 | Internet Explorer Scripting Engine | Microsoft Scripting Engine Memory Corruption Vulnerability |
| CVE-2018-6961 | SD-WAN Edge | VMware SD-WAN Edge by VeloCloud Command Injection Vulnerability |
| CVE-2018-14839 | N1A1 NAS | LG N1A1 NAS Remote Command Execution Vulnerability |
| CVE-2018-1273 | Spring Data Commons | VMware Tanzu Spring Data Commons Property Binder Vulnerability |
| CVE-2018-11138 | KACE System Management Appliance | Quest KACE System Management Appliance Remote Command Execution Vulnerability |
| CVE-2018-0147 | Secure Access Control System (ACS) | Cisco Secure Access Control System Java Deserialization Vulnerability |
| CVE-2018-0125 | VPN Routers | Cisco VPN Routers Remote Code Execution Vulnerability |
| CVE-2017-6334 | DGN2200 Devices | NETGEAR DGN2200 Devices OS Command Injection Vulnerability |
| CVE-2017-6316 | NetScaler SD-WAN Enterprise, CloudBridge Virtual WAN, and XenMobile Server | Citrix Multiple Products Remote Code Execution Vulnerability |
| CVE-2017-3881 | IOS and IOS XE | Cisco IOS and IOS XE Remote Code Execution Vulnerability |
| CVE-2017-12617 | Tomcat | Apache Tomcat Remote Code Execution Vulnerability |
| CVE-2017-12615 | Tomcat | Apache Tomcat on Windows Remote Code Execution Vulnerability |
| CVE-2017-0146 | Windows | Microsoft Windows SMB Remote Code Execution Vulnerability |
| CVE-2016-7892 | Flash Player | Adobe Flash Player Use-After-Free Vulnerability |
| CVE-2016-4171 | Flash Player | Adobe Flash Player Remote Code Execution Vulnerability |
| CVE-2016-1555 | Wireless Access Point (WAP) Devices | NETGEAR Multiple WAP Devices Command Injection Vulnerability |
| CVE-2016-11021 | DCS-930L Devices | D-Link DCS-930L Devices OS Command Injection Vulnerability |
| CVE-2016-10174 | WNR2000v5 Router | NETGEAR WNR2000v5 Router Buffer Overflow Vulnerability |
| CVE-2016-0752 | Ruby on Rails | Ruby on Rails Directory Traversal Vulnerability |
| CVE-2015-4068 | Unified Data Protection (UDP) | Arcserve Unified Data Protection (UDP) Directory Traversal Vulnerability |
| CVE-2015-3035 | Multiple Archer Devices | TP-Link Multiple Archer Devices Directory Traversal Vulnerability |
| CVE-2015-1427 | Elasticsearch | Elasticsearch Groovy Scripting Engine Remote Code Execution Vulnerability |
| CVE-2015-1187 | Multiple Devices | D-Link and TRENDnet Multiple Devices Remote Code Execution Vulnerability |
| CVE-2015-0666 | Prime Data Center Network Manager (DCNM) | Cisco Prime Data Center Network Manager (DCNM) Directory Traversal Vulnerability |
| CVE-2014-6332 | Windows Object Linking and Embedding (OLE) | Microsoft Windows OLE Automation Array Remote Code Execution Vulnerability |
| CVE-2014-6324 | Kerberos Key Distribution Center (KDC) | Microsoft Kerberos Key Distribution Center (KDC) Privilege Escalation Vulnerability |
| CVE-2014-6287 | HTTP File Server (HFS) | Rejetto HTTP File Server (HFS) Remote Code Execution Vulnerability |
| CVE-2014-3120 | Elasticsearch | Elasticsearch Remote Code Execution Vulnerability |
| CVE-2014-0130 | Ruby on Rails | Ruby on Rails Directory Traversal Vulnerability |
| CVE-2013-5223 | DSL-2760U | D-Link DSL-2760U Gateway Cross-Site Scripting Vulnerability |
| CVE-2013-4810 | ProCurve Manager (PCM), PCM+, Identity Driven Manager (IDM), and Application Lifecycle Management | HP Multiple Products Remote Code Execution Vulnerability |
| CVE-2013-2251 | Struts | Apache Struts Improper Input Validation Vulnerability |
| CVE-2012-1823 | PHP | PHP-CGI Query String Parameter Vulnerability |
| CVE-2010-4345 | Exim | Exim Privilege Escalation Vulnerability |
| CVE-2010-4344 | Exim | Exim Heap-Based Buffer Overflow Vulnerability |
| CVE-2010-3035 | IOS XR | Cisco IOS XR Border Gateway Protocol (BGP) Denial-of-Service Vulnerability |
| CVE-2010-2861 | ColdFusion | Adobe ColdFusion Directory Traversal Vulnerability |
| CVE-2009-2055 | IOS XR | Cisco IOS XR Border Gateway Protocol (BGP) Denial-of-Service Vulnerability |
| CVE-2009-1151 | phpMyAdmin | phpMyAdmin Remote Code Execution Vulnerability |
| CVE-2009-0927 | Reader and Acrobat | Adobe Reader and Adobe Acrobat Stack-Based Buffer Overflow Vulnerability |
| CVE-2005-2773 | OpenView Network Node Manager | HP OpenView Network Node Manager Remote Code Execution Vulnerability |
