CISA adds CVE-2024-29824 to its KEV Catalog

CISA adds CVE-2024-29824 to its KEV Catalog

The US CISA has added Ivanti EPM flaw to its Known Exploited Vulnerabilities Catalog based on evidence of active exploitation. CVE-2024-29824  Ivanti Endpoint Manager (EPM) SQL Injection Vulnerability: Ivanti Endpoint Manager…
CISA KEV Update Part VII – September 2024

CISA KEV Update Part VII – September 2024

The US CISA has added 4 vulnerabilities to its Known Exploited Vulnerability Catalog, based on the evidence of exploitation CVE-2019-0344  SAP Commerce Cloud Deserialization of Untrusted Data Vulnerability: SAP Commerce Cloud…
CISA adds Ivanti CVE-2024-7593 to its KEV Catalog

CISA adds Ivanti CVE-2024-7593 to its KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Ivanti Virtual Traffic Manager authentication bypass vulnerability CVE-2024-7593 with a CVSS score 9.8 to its Known Exploited Vulnerabilities (KEV) catalog. Back…
CISA KEV Catalog Update September 2024 -Part VI

CISA KEV Catalog Update September 2024 -Part VI

The US CISA adds nine vulnerabilities to its Known Exploited Vulnerabilities Catalog based on the evidence of active exploitation CVE-2024-27348  Apache HugeGraph-Server contains an improper access control vulnerability that could…
CISA KEV Update September 2024 -Part V

CISA KEV Update September 2024 -Part V

The US CISA adds two vulnerabilities to its Known Exploited Vulnerabilities Catalog based on the evidence of active exploitation The first vulnerability tracked as CVE-2024-43461, Microsoft Windows MSHTML Platform contains…