Known Exploited Vulnerabilities Catalog – Page 2

CISA adds VMware bug CVE-2023-34048 to its catalog

The U.S. CISA has added a VMware vCenter Server Out-of-Bounds Write bug, tracked as CVE-2023-34048, to its Known Exploited Vulnerabilities (KEV) catalog. In October 2023, VMware addressed the flaw CVE-2023-34048…

PravinKarthik January 23, 2024

CISA KEV Update January 2024 – Part II

The U.S. CISA has added an Ivanti Connect Secure and Policy Secure flaws and Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog. Ivanti has reported that threat actors…

PravinKarthik January 11, 2024

CISA KEV Update Part I – January 2024

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-7024 Google Chromium WebRTC Heap Buffer Overflow Vulnerability CVE-2023-7101 Spreadsheet::ParseExcel Remote Code Execution Vulnerability These…

PravinKarthik January 3, 2024

Year 2023

CISA Known Exploited Catalog Vulnerabilities Summary – Year 2023

This will be the first post of year 2023 review that details and summarizes the vulnerabilities list been added to the US CISA Known vulnerability Exploited Catalog based on the…

PravinKarthik December 23, 2023

CISA KEV Update Part I – December 2023

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added ownCloud and Google Chrome vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. CVE-2023-6345 is a high-severity integer overflow in Skia. Skia…

PravinKarthik December 1, 2023

CISA KEV Update Part III – October 2023

The US CISA has added two new security vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog due to active exploitation. These vulnerabilities are: CVE-2023-4966: Citrix NetScaler ADC and NetScaler Gateway…

PravinKarthik October 20, 2023

CISA KEV Update Part I – October 2023

The U.S. CISA added the JetBrains TeamCity flaw CVE-2023-42793 and Windows bug CVE-2023-28229 to its Known Exploited Vulnerabilities Catalog. Below are the descriptions of the two vulnerabilities: CVE-2023-42793 JetBrains TeamCity Authentication Bypass Vulnerability. The vulnerability…

PravinKarthik October 5, 2023

US Aeronautic Firms intruded by Nation State APT Groups

A security advisory from the CISA, the FBI, and the Cyber National Mission Force detailed about a Multiple Nation state threat actors have leveraged popular vulnerabilities of Zoho and Fortinet…

PravinKarthik September 8, 2023