CISA KEV - Security Ticks

CitrixBleed 2 Flaw Poses Unacceptable Risk: CISA

CISA KEV, Citrix, CitrixBleed 2, CitrixBleed2, exploited, Vulnerabilities / SecurityTicks

CitrixBleed 2 Flaw Poses Unacceptable Risk: CISA 2025-07-14 at 17:58 By Ionut Arghire CISA considers the recently disclosed CitrixBleed 2 vulnerability an unacceptable risk and has added it to the KEV catalog. The post CitrixBleed 2 Flaw Poses Unacceptable Risk: CISA appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source […]

React to this headline:

CitrixBleed 2 Flaw Poses Unacceptable Risk: CISA Read More »

CISA Warns of Two Exploited TeleMessage Vulnerabilities

CISA KEV, exploited, TeleMessage, Vulnerabilities / SecurityTicks

CISA Warns of Two Exploited TeleMessage Vulnerabilities 2025-07-02 at 12:02 By Ionut Arghire CISA says two more vulnerabilities in the messaging application TeleMessage TM SGNL have been exploited in the wild. The post CISA Warns of Two Exploited TeleMessage Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

CISA Warns of Two Exploited TeleMessage Vulnerabilities Read More »

CISA Warns AMI BMC Vulnerability Exploited in the Wild

AMI, BMC, CISA KEV, exploited, Vulnerabilities / SecurityTicks

CISA Warns AMI BMC Vulnerability Exploited in the Wild 2025-06-26 at 13:16 By Ionut Arghire CISA is urging federal agencies to patch a recent AMI BMC vulnerability and a half-a-decade-old bug in FortiOS by July 17. The post CISA Warns AMI BMC Vulnerability Exploited in the Wild appeared first on SecurityWeek. This article is an

React to this headline:

CISA Warns AMI BMC Vulnerability Exploited in the Wild Read More »

Linux Security: New Flaws Allow Root Access, CISA Warns of Old Bug Exploitation

CISA KEV, exploited, kernel, Linux, Vulnerabilities, vulnerability / SecurityTicks

Linux Security: New Flaws Allow Root Access, CISA Warns of Old Bug Exploitation 2025-06-18 at 15:33 By Eduard Kovacs Qualys has disclosed two Linux vulnerabilities that can be chained for full root access, and CISA added a flaw to its KEV catalog. The post Linux Security: New Flaws Allow Root Access, CISA Warns of Old

React to this headline:

Linux Security: New Flaws Allow Root Access, CISA Warns of Old Bug Exploitation Read More »

Organizations Warned of Vulnerability Exploited Against Discontinued TP-Link Routers

CISA KEV, exploited, router, TP-LINK, Vulnerabilities, vulnerability / SecurityTicks

Organizations Warned of Vulnerability Exploited Against Discontinued TP-Link Routers 2025-06-17 at 14:01 By Ionut Arghire CISA warns that a vulnerability impacting multiple discontinued TP-Link router models is exploited in the wild. The post Organizations Warned of Vulnerability Exploited Against Discontinued TP-Link Routers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

React to this headline:

Organizations Warned of Vulnerability Exploited Against Discontinued TP-Link Routers Read More »

Vulnerabilities in CISA KEV Are Not Equally Critical: Report

CISA, CISA KEV, Incident Response, Ox Security, Vulnerabilities, Zero-Day / SecurityTicks

Vulnerabilities in CISA KEV Are Not Equally Critical: Report 2025-05-28 at 13:13 By Ionut Arghire New report says organizations should always consider environmental context when assessing the impact of vulnerabilities in CISA KEV catalog. The post Vulnerabilities in CISA KEV Are Not Equally Critical: Report appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Vulnerabilities in CISA KEV Are Not Equally Critical: Report Read More »

Critical Vulnerability in AI Builder Langflow Under Attack

AI, Artificial Intelligence, CISA KEV, exploited, Langflow, vulnerability / SecurityTicks

Critical Vulnerability in AI Builder Langflow Under Attack 2025-05-06 at 14:33 By Ionut Arghire CISA warns organizations that threat actors are exploiting a critical-severity vulnerability in low-code AI builder Langflow. The post Critical Vulnerability in AI Builder Langflow Under Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Critical Vulnerability in AI Builder Langflow Under Attack Read More »

PoC Published for Exploited SonicWall Vulnerabilities

CISA KEV, exploited, PoC, SonicWall, Vulnerabilities / SecurityTicks

PoC Published for Exploited SonicWall Vulnerabilities 2025-05-05 at 13:06 By Ionut Arghire PoC code targeting two exploited SonicWall flaws was published just CISA added them to the KEV catalog. The post PoC Published for Exploited SonicWall Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

PoC Published for Exploited SonicWall Vulnerabilities Read More »

CISA Warns of Exploited Broadcom, Commvault Vulnerabilities

Broadcom, CISA KEV, Commvault, exploited, Vulnerabilities / SecurityTicks

CISA Warns of Exploited Broadcom, Commvault Vulnerabilities 2025-04-29 at 12:02 By Ionut Arghire CISA urges immediate patching for recently disclosed Broadcom, Commvault, and Qualitia vulnerabilities exploited in the wild. The post CISA Warns of Exploited Broadcom, Commvault Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this

React to this headline:

CISA Warns of Exploited Broadcom, Commvault Vulnerabilities Read More »

CISA Urges Urgent Patching for Exploited CentreStack, Windows Zero-Days

CentreStack, CISA KEV, exploited, Gladinet CentreStack, Vulnerabilities / SecurityTicks

CISA Urges Urgent Patching for Exploited CentreStack, Windows Zero-Days 2025-04-09 at 14:24 By Ionut Arghire CISA has added fresh CentreStack and Windows CLFS vulnerabilities to the Known Exploited Vulnerabilities catalog. The post CISA Urges Urgent Patching for Exploited CentreStack, Windows Zero-Days appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

CISA Urges Urgent Patching for Exploited CentreStack, Windows Zero-Days Read More »

CISA Warns of Exploited Nakivo Vulnerability

CISA KEV, exploited, Nakivo, Vulnerabilities / SecurityTicks

CISA Warns of Exploited Nakivo Vulnerability 2025-03-20 at 17:35 By Ionut Arghire CISA has added an absolute path traversal bug in Nakivo Backup and Replication to its Known Exploited Vulnerabilities list. The post CISA Warns of Exploited Nakivo Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to

React to this headline:

CISA Warns of Exploited Nakivo Vulnerability Read More »

CISA Warns of Ivanti EPM Vulnerability Exploitation

CISA KEV, exploited, Ivanti, Vulnerabilities / SecurityTicks

CISA Warns of Ivanti EPM Vulnerability Exploitation 2025-03-11 at 13:45 By Ionut Arghire CISA has added three critical-severity flaws in Ivanti EPM to its Known Exploited Vulnerabilities catalog. The post CISA Warns of Ivanti EPM Vulnerability Exploitation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

CISA Warns of Ivanti EPM Vulnerability Exploitation Read More »

Exploitation Long Known for Most of CISA’s Latest KEV Additions

CISA KEV, exploited, Vulnerabilities, vulnerability / SecurityTicks

Exploitation Long Known for Most of CISA’s Latest KEV Additions 2025-03-04 at 13:02 By Eduard Kovacs Exploitation has been known for months or years for most of the latest vulnerabilities added by CISA to its KEV catalog. The post Exploitation Long Known for Most of CISA’s Latest KEV Additions appeared first on SecurityWeek. This article

React to this headline:

Exploitation Long Known for Most of CISA’s Latest KEV Additions Read More »

CISA Warns of Attacks Exploiting Oracle Agile PLM Vulnerability

Agile PLM, CISA KEV, exploited, Oracle, Vulnerabilities / SecurityTicks

CISA Warns of Attacks Exploiting Oracle Agile PLM Vulnerability 2025-02-25 at 13:43 By Eduard Kovacs CISA has added CVE-2024-20953, an Oracle Agile PLM vulnerability patched in January 2024, to its KEV catalog. The post CISA Warns of Attacks Exploiting Oracle Agile PLM Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

React to this headline:

CISA Warns of Attacks Exploiting Oracle Agile PLM Vulnerability Read More »

CISA Warns of Attacks Exploiting Craft CMS Vulnerability

CISA KEV, Craft, exploited, Vulnerabilities / SecurityTicks

CISA Warns of Attacks Exploiting Craft CMS Vulnerability 2025-02-21 at 13:48 By Eduard Kovacs CISA has added a Craft CMS flaw tracked as CVE-2025-23209 to its Known Exploited Vulnerabilities (KEV) catalog. The post CISA Warns of Attacks Exploiting Craft CMS Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

React to this headline:

CISA Warns of Attacks Exploiting Craft CMS Vulnerability Read More »

Second Recently Patched Flaw Exploited to Hack Palo Alto Firewalls

CISA KEV, exploited, Featured, firewall, Palo Alto Networks, Vulnerabilities / SecurityTicks

Second Recently Patched Flaw Exploited to Hack Palo Alto Firewalls 2025-02-21 at 13:21 By Eduard Kovacs Palo Alto Networks is warning customers that a second vulnerability patched in February is being exploited in attacks. The post Second Recently Patched Flaw Exploited to Hack Palo Alto Firewalls appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Second Recently Patched Flaw Exploited to Hack Palo Alto Firewalls Read More »

CISA Issues Exploitation Warning for .NET Vulnerability

.NET, CISA KEV, exploited, Vulnerabilities / SecurityTicks

CISA Issues Exploitation Warning for .NET Vulnerability 2025-02-05 at 13:06 By Eduard Kovacs CISA has added CVE-2024-29059, a flaw affecting Microsoft .NET, to its Known Exploited Vulnerabilities catalog. The post CISA Issues Exploitation Warning for .NET Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

CISA Issues Exploitation Warning for .NET Vulnerability Read More »

CISA Warns of Old jQuery Vulnerability Linked to Chinese APT

CISA KEV, exploited, jQuery, Vulnerabilities / SecurityTicks

CISA Warns of Old jQuery Vulnerability Linked to Chinese APT 2025-01-24 at 18:01 By Eduard Kovacs CISA has added the JQuery flaw CVE-2020-11023, previously linked to APT1, to its Known Exploited Vulnerabilities (KEV) catalog. The post CISA Warns of Old jQuery Vulnerability Linked to Chinese APT appeared first on SecurityWeek. This article is an excerpt

React to this headline:

CISA Warns of Old jQuery Vulnerability Linked to Chinese APT Read More »

A Look at CISA Known Exploited Vulnerabilities in 2024

CISA, CISA KEV, CVE-2002-0367, CVE-2012-4792, CVE-2024-3393, cyber news, cybersecurity, Exploited Vulnerabilities, vulnerability / SecurityTicks

A Look at CISA Known Exploited Vulnerabilities in 2024 2024-12-30 at 10:19 By Ashish Khaitan Overview The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added 185 vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog in 2024, as the database grew to 1,238 software and hardware flaws at high risk of cyberattacks. The agency removed at

React to this headline:

A Look at CISA Known Exploited Vulnerabilities in 2024 Read More »

Organizations Warned of Exploited SAP, Gpac and D-Link Vulnerabilities

CISA KEV, exploited, Vulnerabilities / SecurityTicks

Organizations Warned of Exploited SAP, Gpac and D-Link Vulnerabilities 2024-10-01 at 16:01 By Ionut Arghire CISA warns that years-old vulnerabilities in SAP Commerce, Gpac framework, and D-Link DIR-820 routers are exploited in the wild. The post Organizations Warned of Exploited SAP, Gpac and D-Link Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Organizations Warned of Exploited SAP, Gpac and D-Link Vulnerabilities Read More »