Known Exploited Catalog vulnerabilities

Patch released CVE-2024-3400 added to KEV Catalog

The U.S. CISA added the CVE-2024-3400 Palo Alto Networks PAN-OS Command Injection vulnerability to its Known Exploited Vulnerabilities catalog. The vulnerability is a critical command injection in Palo Alto Networks…

PravinKarthik April 16, 2024

CISA adds Outlook and FTD Vulnerabilities to its KEV Catalog

The US CISA has flagged an alert, adding two vulnerabilities to the catalog of “Known Exploited Vulnerabilities (KEV),” which showed a call for urgent attention. CVE-2024-21410 and CVE-2020-3259, respectively. Both…

PravinKarthik February 16, 2024

CISA KEV Update Part III – November 2023

The U.S. CISA added three new vulnerabilities to its Known Exploited Vulnerabilities catalog. Below is the list of the three added vulnerabilities: CVE-2023-36584 Microsoft Windows Mark of the Web (MOTW) Security…

PravinKarthik November 17, 2023

CISA KEV Update – Junos vulnerabilities

The U.S. CISA has given a November 17, 2023, deadline for federal agencies and organizations to apply mitigations to secure against a number of security flaws in Juniper Junos OS…

PravinKarthik November 14, 2023

CISA Updates KEV With SLP Vulnerability

The US CISA has issued a warning regarding the active exploitation of a Service Location Protocol (SLP) vulnerability by threat actors. This vulnerability, identified as CVE-2023-29552, permits DoS attacks with…

PravinKarthik November 10, 2023

CISA KEV Update Part III – September 2023

The US CISA has added the critical flaw CVE-2018-14667 with a CVSS score of 9.8 affecting Red Hat JBoss RichFaces Framework to its Known Exploited Vulnerabilities Catalog. The issue is…

PravinKarthik September 30, 2023

CISA KEV Update September 2023 – Part II

US CISA added the high-severity flaw CVE-2023-41179, affecting Trend Micro Apex One and Worry-Free Business Security to its Known Exploited Vulnerabilities Catalog. Trend Micro this week has released security updates…

PravinKarthik September 23, 2023