October 3, 2023

CISA has added several new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation during the month of July 2023.

Here, the list of vulnerabilities is listed for reference

  • CVE-2021-29256 Arm Mali GPU Kernel Driver Use-After-Free Vulnerability
  • CVE-2023-32046 Microsoft Windows MSHTML Platform Privilege Escalation Vulnerability
  • CVE-2023-32049 Microsoft Windows Defender SmartScreen Security Feature Bypass Vulnerability
  • CVE-2023-35311 Microsoft Outlook Security Feature Bypass Vulnerability
  • CVE-2023-36874 Microsoft Windows Error Reporting Service Privilege Escalation Vulnerability
  • CVE-2022-31199 Netwrix Auditor Insecure Object Deserialization Vulnerability
  • CVE-2023-37450 Apple Multiple Products WebKit Code Execution Vulnerability
  • CVE-2022-29303 SolarView Compact Command Injection Vulnerability
  • CVE-2023-36884 Microsoft Office and Windows HTML Remote Code Execution Vulnerability
  • CVE-2023-3519 Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability

The remediation timeline for these vulnerabilities is set between July 29 and August 10 2023.

Leave a Reply

%d bloggers like this: