Known Exploited Vulnerability Catalog

CISA adds BeyondTrust CVE-2024-12356 to its KEV Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-12356: Command Injection Vulnerability in BeyondTrust PRA and RS Overview: CVE-2024-12356 is a…

PravinKarthik December 20, 2024

CISA KEV Catalog Update Part V – December 2024

The US CISA has added the following vulnerabilities to its Known Exploited Vulnerabilities Catalog based on the evidence of active exploitation CVE-2018-14933 CVE-2018-14933 with a CVSS score of 9.8 and…

PravinKarthik December 19, 2024

CISA adds CVE-2024-49138 to its KEV Catalog

The US CISA adds Microsoft vulnerability to its Known Exploited Vulnerabilities Catalog based on the evidence of active exploitation. The vulnerability tracked as CVE-2024-49138 with a CVSS score of 7.8…

PravinKarthik December 11, 2024

CISA KEV Catalog Update Part VI – November 2024

The US CISA has added the following vulnerabilities to its Known Exploited Vulnerabilities Catalog based on the evidence of active exploitation CVE-2024-44308 With no CVSS score assigned yet, Apple iOS, macOS,…

PravinKarthik November 21, 2024

CISA adds VMware twin flaws to KEV Catalog

The US CISA has added VMware vulnerabilities to its Known Exploited Vulnerability Catalog based on the evidence of active exploitation. A detailed write-up about these vulnerabilities has been already released…

PravinKarthik November 21, 2024

CISA KEV Catalog Update Part IV- November 2024

The U.S. CISA added the following vulnerabilities to its Known Exploited Vulnerabilities catalog CVE-2024-1212 with a CVSS score of 10 and CWE-78, is a Progress Kemp LoadMaster OS command injection issue…

PravinKarthik November 19, 2024

CISA adds Palo Alto flaws to KEV Catalog

The US CISA has issued an urgent alert and added two new vulnerabilities related to Palo Alto Networks to its Known Exploited Vulnerabilities Catalog The first vulnerability, CVE-2024-9463 with a…

PravinKarthik November 15, 2024

CISA KEV Catalog Update Part III- November 2024

The US CISA adds Microsoft, Metabase, Cisco, and Atlassian vulnerabilities to its Known Exploited Vulnerabilities Catalog based on the evidence of mass exploitation. CVE-2014-2120 Thr vulnerability with a CVSS score…

PravinKarthik November 13, 2024