CISA KEV Update Part III – October 2024

CISA KEV Update Part III – October 2024

The US CISA has added below vulnerabilities to its Known exploited vulnerabilities catalog based on the evidence of active exploitation CVE-2024-43047 The vulnerability with a CVSS score of 7.8, Multiple…
CISA Adds CVE-2023-43208 to its Catalog

CISA Adds CVE-2023-43208 to its Catalog

The US CISA has added a flaw affecting NextGen Healthcare’s Mirth Connect product to its Known Exploited Vulnerabilities  catalog. Mirth Connect is a widely used cross-platform interface engine that healthcare…
CISA KEV Update April 2024 – Part II

CISA KEV Update April 2024 – Part II

The US. CISA has issued a high-priority alert for federal agencies to patch two critical vulnerabilities found in Cisco products and one in the widely used file transfer tool, CrushFTP.…
CISA KEV Update – September 2023

CISA KEV Update – September 2023

CISA has added eight new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. With this addition, the catalog numbers surpasses 1000 vulnerabilities CVE-2022-22265 Samsung Mobile Devices Use-After-Free…
Apache RocketMQ Vulnerability Exploited in Wild

Apache RocketMQ Vulnerability Exploited in Wild

The U.S. CISA adds a new critical-severity vulnerability to its KEV catalog that tracked as CVE-2023-33246 and it affects Apache’s RocketMQ distributed messaging and streaming platform. Exploiting the vulnerability is possible without authentication, and…