CISA Adds Five Known Exploited Vulnerabilities to Catalog

LINK VE Number  CVE Title Remediation Due Date CVE-2020-11261 Qualcomm Multiple Chipsets Improper Input Validation Vulnerability 06/01/2022 CVE-2018-14847 MikroTik Router OS Directory Traversal Vulnerability 06/01/2022 CVE-2021-37415 Zoho ManageEngine ServiceDesk Authentication Bypass Vulnerability 12/15/2021 CVE-2021-40438 Apache HTTP Server-Side Request Forgery (SSRF)  12/15/2021 CVE-2021-44077 Zoho ManageEngine ServiceDesk Plus Remote Code Execution 12/15/2021 Here is the actual list […]

CISA Updates their “Known Exploited Vulnerability” list with 4 new CVEs

The following are being added CVE Number CVE Title Remediation Due Date CVE-2021-22204 Exiftool Remote Code Execution vulnerability 12/01/2021 CVE-2021-40449 Microsoft Win32k Elevation of Privilege     12/01/2021 CVE-2021-42292 Microsoft Excel Security Feature Bypass     12/01/2021 CVE-2021-42321 Microsoft Exchange Server Remote Code Execution     12/01/2021 The Master List is now presented by CISA in a CSV. […]