September 30, 2023

The U.S. CISA added 12 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, including four vulnerabilities in D-Link routers, two Chrome zero-day issues, and a recently disclosed flaw in the QNAP Photo Station.

According to Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities, FCEB agencies must address the identified vulnerabilities by the due date to protect their networks against attacks exploiting the flaws in the catalog.


All private organizations review the Catalog and address the vulnerabilities in their infrastructure.

CVE IDOEMProductDue Date
CVE-2022-27593QNAPPhoto Station29-09-2022
CVE-2020-9934AppleiOS, iPadOS, and macOS29-09-2022
CVE-2018-6530D-LinkMultiple Routers29-09-2022
CVE-2018-2628OracleWebLogic Server29-09-2022
CVE-2018-13374FortinetFortiOS and FortiADC29-09-2022
CVE-2017-5521NETGEARMultiple Devices29-09-2022
CVE-2011-4723D-LinkDIR-300 Router29-09-2022
CVE-2011-1823AndroidAndroid OS29-09-2022

Leave a Reply

%d bloggers like this: