US CISA – Page 4 – TheCyberThrone

CISA KEV Catalog Update Part III-September 2024

The US CISA has added below vulnerabilities to the Known exploited vulnerabilities catalog based on the evidence of active exploitation. These vulnerabilities are part of this month microsoft patch tuesday…

PravinKarthik September 11, 2024

CISA KEV Update Part II – September 2024.

The US CISA added below vulnerabilities to the Known Exploited Vulnerability Catalog based on the evidence of active exploitation CVE-2024-40766 SonicWall SonicOS contains an improper access control vulnerability that could…

PravinKarthik September 10, 2024

CISA KEV Catalog Update September 2024 – Part I

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2021-20123 : Draytek VigorConnect contains a path traversal vulnerability in the DownloadFileServlet endpoint.…

PravinKarthik September 4, 2024

CISA adds CVE-2024-7965 Chrome bug to its KEV catalog

The U.S. CISA added Google Chrome vulnerability to its Known Exploited Vulnerability Catalog following the mass exploitation in the wild. CVE-2024-7965; Google Chromium V8 contains an inappropriate implementation vulnerability that…

PravinKarthik August 29, 2024

CISA adds Apache OFBiz Vulnerability CVE-2024-38856 to KEV Catalog

The U.S. CISA adds Apache OFBiz vulnerability to its KEV catalog following the mass exploitation CVE-2024-38856 : Apache OFBiz Incorrect Authorization Vulnerability: Apache OFBiz contains an incorrect authorization vulnerability that…

PravinKarthik August 28, 2024

CISA adds CV-2024-7971 to its KEV Catalog

The US CISA has added Google Chrome vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-7971 Google Chromium V8 contains a type of confusion vulnerability…

PravinKarthik August 27, 2024

CISA adds Versa Networks Flaw CVE-2024-39717 to its KEV Catalog

The U.S. CISA has added CVE-2024-39717 to its Know exploited vulnerability catalog following the massive exploitation evidence This vulnerability CVE-2024-39717 affects Versa Networks’ Director GUI, specifically in the customization feature…

PravinKarthik August 26, 2024

CISA adds multiple vulnerabilities to its KEV catalog

The U.S. CISA has added 4 vulnerabilities to it'd Known Exploited Vulnerabilities Catalog (KEV) belongs to Dahua, Microsoft, and Linux products based on the mass exploitation CVE-2022-0185 Linux Kernel Heap-Based…

PravinKarthik August 22, 2024