#cisa-kev

[ follow ]
#remote-code-execution #vmware-vcenter #cve-2024-37079 #solarwinds #cve-2025-40551 #cve-2025-33073
#solarwinds
fromComputerWeekly.com
3 hours ago
Information security

SolarWinds RCE bug makes Cisa list as exploitation spreads | Computer Weekly

Critical SolarWinds Web Help Desk deserialization vulnerability (CVE-2025-40551) enables unauthenticated remote code execution and was added to CISA KEV as exploitation spreads.
fromThe Hacker News
18 hours ago
Information security

CISA Adds Actively Exploited SolarWinds Web Help Desk RCE to KEV Catalog

A critical untrusted-data deserialization vulnerability in SolarWinds Web Help Desk (CVE-2025-40551) enables unauthenticated remote code execution and is actively exploited.
Information security
fromThe Hacker News
18 hours ago

CISA Adds Actively Exploited SolarWinds Web Help Desk RCE to KEV Catalog

A critical untrusted-data deserialization vulnerability in SolarWinds Web Help Desk (CVE-2025-40551) enables unauthenticated remote code execution and is actively exploited.
more#solarwinds
Information security
fromSecurityWeek
15 hours ago

Fresh SolarWinds Vulnerability Exploited in Attacks

Threat actors are actively exploiting an unauthenticated deserialization RCE in SolarWinds Web Help Desk (CVE-2025-40551); immediate patching is required.
Information security
fromSecurityWeek
1 week ago

Microsoft Patches Office Zero-Day Likely Exploited in Targeted Attacks

CVE-2026-21509 is an Office zero-day that bypasses OLE mitigations and is actively exploited; Microsoft released patches and CISA added it to the KEV catalog.
#vmware-vcenter
more#vmware-vcenter
Information security
fromThe Hacker News
1 week ago

CISA Adds Actively Exploited VMware vCenter Flaw CVE-2024-37079 to KEV Catalog

CVE-2024-37079 is a critical heap overflow in VMware vCenter Server being actively exploited and requires immediate patching.
Information security
fromThe Hacker News
1 week ago

CISA Updates KEV Catalog with Four Actively Exploited Software Vulnerabilities

CISA added four actively exploited vulnerabilities to its KEV catalog, including high-severity remote file inclusion, authentication bypass, access-control, and npm supply-chain compromise.
fromTheregister
3 weeks ago

Fed agencies urged to ditch Gogs as zero-day makes CISA list

CISA has ordered federal agencies to stop using Gogs or lock it down immediately after a high-severity vulnerability in the self-hosted Git service was added to its Known Exploited Vulnerabilities (KEV) catalog. The US cybersecurity agency added the path traversal flaw to the KEV list on Monday, triggering urgent remediation requirements for federal civilian executive branch (FCEB) agencies.
Information security
fromThe Hacker News
1 month ago

CISA Flags Critical ASUS Live Update Flaw After Evidence of Active Exploitation

The vulnerability, tracked as CVE-2025-59374 (CVSS score: 9.3), has been described as an "embedded malicious code vulnerability" introduced by means of a supply chain compromise that could allow attackers to perform unintended actions. "Certain versions of the ASUS Live Update client were distributed with unauthorized modifications introduced through a supply chain compromise," according to a description of the flaw published in CVE.org. "The modified builds could cause devices meeting specific targeting conditions to perform unintended actions. Only devices that met these conditions and installed the compromised versions were affected."
Information security
fromThe Hacker News
1 month ago

CISA Adds Actively Exploited Sierra Wireless Router Flaw Enabling RCE Attacks

Details of the six-year-old flaw were publicly shared by Cisco Talos in April 2019, describing it as an exploitable remote code execution vulnerability in the ACEManager "upload.cgi" function of Sierra Wireless AirLink ES450 firmware version 4.9.3. Talos reported the flaw to the Canadian company in December 2018. "This vulnerability exists in the file upload capability of templates within the AirLink 450," the company said. "When uploading template files, you can specify the name of the file that you are uploading."
Information security
Information security
fromThe Hacker News
1 month ago

CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog

CVE-2025-58360 is an unauthenticated XXE in OSGeo GeoServer being exploited in the wild; affected versions require immediate patching to prevent file access, SSRF, and DoS.
#cve-2025-33073
more#cve-2025-33073
Information security
fromThe Hacker News
3 months ago

Five New Exploited Bugs Land in CISA's Catalog - Oracle and Microsoft Among Targets

CISA confirmed CVE-2025-61884 SSRF in Oracle E-Business Suite is being exploited in the wild and added it to the KEV catalog.
Information security
fromSecurityWeek
4 months ago

Organizations Warned of Exploited Meteobridge Vulnerability

A Meteobridge command-injection vulnerability (CVE-2025-4008) has been exploited in attacks and added to CISA's Known Exploited Vulnerabilities catalog.
Information security
fromThe Hacker News
4 months ago

CISA Flags Meteobridge CVE-2025-4008 Flaw as Actively Exploited in the Wild

Meteobridge contains a command-injection vulnerability (CVE-2025-4008) allowing unauthenticated remote attackers to execute arbitrary commands as root; vulnerability is actively exploited and patched in version 6.
Information security
fromSecuritymagazine
5 months ago

WhatsApp Flaw Added to CISA's Known Exploited Vulnerabilities Catalog

CISA added two actively exploited vulnerabilities—TP-Link TL-WA855RE missing authentication (CVE-2020-24363) and WhatsApp incorrect authorization (CVE-2025-55177)—to the KEV Catalog.
fromThe Hacker News
5 months ago

CISA Adds Three Exploited Vulnerabilities to KEV Catalog Affecting Citrix and Git

CVE-2024-8068 (CVSS score: 5.1) - An improper privilege management vulnerability in Citrix Session Recording that could allow for privilege escalation to NetworkService Account access when an attacker is an authenticated user in the same Windows Active Directory domain as the session recording server domain CVE-2024-8069 (CVSS score: 5.1) - A deserialization of untrusted data vulnerability in Citrix Session Recording that allows limited remote code execution with the privileges of a NetworkService Account access when an attacker is an authenticated user on the same intranet as the session recording server
Information security
[ Load more ]