CISA KEV Update Part II- July 2024

CISA KEV Update Part II- July 2024

The US CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-34102 Adobe Commerce and Magento Open Source Improper Restriction of XML External…
CISA KEV Update Part III – June 2024

CISA KEV Update Part III – June 2024

The US CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2022-24816 GeoSolutionsGroup JAI-EXT Code Injection Vulnerability CVE-2022-2586 Linux Kernel Use-After-Free Vulnerability CVE-2020-13965 Roundcube Webmail…
CISA KEV Catalog Update Part II- June 2024

CISA KEV Catalog Update Part II- June 2024

The U.S. CISA added the following vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog: CVE-2024-32896 Android Pixel Privilege Escalation Vulnerability is an elevation of privilege vulnerability in Pixel Firmware, which has been exploited…
CISA adds CVE-2017-3506 to KEV Catalog

CISA adds CVE-2017-3506 to KEV Catalog

The US CISA added an old Oracle WebLogic flaw to its Known Exploited Vulnerabilities catalog after it was seen being exploited by Chinese hackers to deploy cryptocurrency miners. The vulnerability,…
CISA KEV Catalog Update May 2024 – Part IV

CISA KEV Catalog Update May 2024 – Part IV

The U.S. CISA added the following vulnerabilities to its  Known Exploited Vulnerabilities catalog CVE-2024-24919 Check Point Quantum Security Gateways Information Disclosure Vulnerability CVE-2024-1086 Linux Kernel Use-After-Free Vulnerability The vulnerability CVE-2024-24919 is a Quantum Gateway information…