Tag: Active Exploitation

CISA Issues Active Exploitation Warning for Mirasvit Deserialization Vulnerability Added to KEV Catalog

CISA Issues Active Exploitation Warning for Mirasvit Deserialization Vulnerability Added to KEV Catalog

Blogging

CISA KEV ALERT: Active Exploitation Detected Against Oracle WebLogic Server Vulnerability

CISA KEV ALERT: Active Exploitation Detected Against Oracle WebLogic Server Vulnerability

Blogging

CISA Adds Actively Exploited Palo Alto Networks PAN-OS Authentication Bypass Vulnerability to KEV Catalog

CISA Adds Actively Exploited Palo Alto Networks PAN-OS Authentication Bypass Vulnerability to KEV Catalog

Blogging

CISA Adds CVE-2026-48172 LiteSpeed cPanel Plugin Vulnerability to KEV Catalog Following Active Exploitation Activity

CISA Adds CVE-2026-48172 LiteSpeed cPanel Plugin Vulnerability to KEV Catalog Following Active Exploitation Activity

Blogging

CISA Adds Actively Exploited Drupal Core SQL Injection Vulnerability to KEV Catalog

Active Exploitation

CISA Adds Seven Known Exploited Vulnerabilities to KEV Catalog Following Active Exploitation Activity

CISA Adds Seven Known Exploited Vulnerabilities to KEV Catalog Following Active Exploitation Activity

Blogging

CISA Orders Federal Agencies to Patch Actively Exploited Cisco SD-WAN Vulnerability by Sunday

CISA Orders Federal Agencies to Patch Actively Exploited Cisco SD-WAN Vulnerability by Sunday

AI Threat Intelligence

CISA Adds Microsoft Exchange Server Vulnerability to KEV Catalog Following Active Exploitation Activity

CISA Adds Microsoft Exchange Server Vulnerability to KEV Catalog Following Active Exploitation Activity

Blogging

CISA ADDS IVANTI EPMM VULNERABILITY TO KEV CATALOG AFTER EVIDENCE OF ACTIVE EXPLOITATION

CISA ADDS IVANTI EPMM VULNERABILITY TO KEV CATALOG AFTER EVIDENCE OF ACTIVE EXPLOITATION

Blogging

CISA KEV Update — Active Exploitation Confirmed in Linux Kernel Vulnerability (CVE-2026-31431)

CISA KEV Update — Active Exploitation Confirmed in Linux Kernel Vulnerability (CVE-2026-31431)

Blogging

CISA KEV UPDATE: ACTIVE EXPLOITATION CONFIRMED FOR CONNECTWISE SCREENCONNECT PATH TRAVERSAL AND MICROSOFT WINDOWS PROTECTION FAILURE

CISA KEV UPDATE: ACTIVE EXPLOITATION CONFIRMED FOR CONNECTWISE SCREENCONNECT PATH TRAVERSAL AND MICROSOFT WINDOWS PROTECTION FAILURE

Blogging

ICS ALERT: Cybersecurity and Infrastructure Security Agency EXPANDS KNOWN EXPLOITED VULNERABILITIES CATALOG WITH FOUR ACTIVELY TARGETED FLAWS ACROSS ENTERPRISE AND NETWORK DEVICES

ICS ALERT: Cybersecurity and Infrastructure Security Agency EXPANDS KNOWN EXPLOITED VULNERABILITIES CATALOG WITH FOUR ACTIVELY TARGETED FLAWS ACROSS ENTERPRISE AND NETWORK DEVICES

Blogging

CISA FLAGS ACTIVELY EXPLOITED APACHE ACTIVEMQ VULNERABILITY IN LATEST KEV UPDATE

CISA FLAGS ACTIVELY EXPLOITED APACHE ACTIVEMQ VULNERABILITY IN LATEST KEV UPDATE

Blogging

CISA FLAGS SEVEN ACTIVELY EXPLOITED VULNERABILITIES ACROSS MICROSOFT, ADOBE, AND FORTINET SYSTEMS

CISA FLAGS SEVEN ACTIVELY EXPLOITED VULNERABILITIES ACROSS MICROSOFT, ADOBE, AND FORTINET SYSTEMS

Blogging

CISA ADDS LEGACY OFFICE RCE AND SHAREPOINT FLAW TO KEV AS ACTIVE EXPLOITATION CONTINUES

CISA ADDS LEGACY OFFICE RCE AND SHAREPOINT FLAW TO KEV AS ACTIVE EXPLOITATION CONTINUES

Blogging

FORTINET EMS EXPOSURE — CISA ADDS ACTIVELY EXPLOITED ACCESS CONTROL VULNERABILITY TO KEV CATALOG AS ENTERPRISE ENDPOINT INFRASTRUCTURE TARGETED

FORTINET EMS EXPOSURE — CISA ADDS ACTIVELY EXPLOITED ACCESS CONTROL VULNERABILITY TO KEV CATALOG AS ENTERPRISE ENDPOINT INFRASTRUCTURE TARGETED

Blogging

TRUECONF CLIENT EXPLOITATION RISK — CISA FLAGS ACTIVE ATTACK VECTOR IN KEV CATALOG UPDATE

TRUECONF CLIENT EXPLOITATION RISK — CISA FLAGS ACTIVE ATTACK VECTOR IN KEV CATALOG UPDATE

Blogging

ACTIVE EXPLOITATION ALERT: GOOGLE DAWN USE-AFTER-FREE VULNERABILITY ENTERS FEDERAL PRIORITY INDEX

ACTIVE EXPLOITATION ALERT: GOOGLE DAWN USE-AFTER-FREE VULNERABILITY ENTERS FEDERAL PRIORITY INDEX

Blogging

KEV CATALOG EXPANSION — F5 BIG-IP REMOTE CODE EXECUTION VULNERABILITY ADDED AFTER ACTIVE EXPLOITATION CONFIRMED

KEV CATALOG EXPANSION — F5 BIG-IP REMOTE CODE EXECUTION VULNERABILITY ADDED AFTER ACTIVE EXPLOITATION CONFIRMED

Blogging

ACTIVE EXPLOITATION CONFIRMED — CISA ADDS LANGFLOW CODE INJECTION FLAW TO KEV CATALOG, SIGNALING IMMEDIATE RISK TO FEDERAL AND PRIVATE SYSTEMS

ACTIVE EXPLOITATION CONFIRMED — CISA ADDS LANGFLOW CODE INJECTION FLAW TO KEV CATALOG, SIGNALING IMMEDIATE RISK TO FEDERAL AND PRIVATE SYSTEMS

Blogging

ACTIVE EXPLOITATION ALERT: CISA ADDS CVE-2026-25108 FILEZEN COMMAND INJECTION TO KEV CATALOG

Blogging

CISA Orders Emergency Patch After Exploited SolarWinds Web Help Desk Vulnerability Bypasses Prior Fixes

CISA Orders Emergency Patch After Exploited SolarWinds Web Help Desk Vulnerability Bypasses Prior Fixes

Blogging

Active Exploitation of “MongoBleed” Vulnerability Triggers Emergency Patching Across U.S. and Australian Systems

Active Exploitation of “MongoBleed” Vulnerability Triggers Emergency Patching Across U.S. and Australian Systems

Blogging