Alerts: CISA Adds Four Known Exploited Vulnerabilities to Catalog

Feb 5, 2025

—

Source URL: https://www.cisa.gov/news-events/alerts/2025/02/04/cisa-adds-four-known-exploited-vulnerabilities-catalog
Source: Alerts
Title: CISA Adds Four Known Exploited Vulnerabilities to Catalog

Feedly Summary: CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.

CVE-2024-45195 Apache OFBiz Forced Browsing Vulnerability
CVE-2024-29059 Microsoft .NET Framework Information Disclosure Vulnerability
CVE-2018-9276 Paessler PRTG Network Monitor OS Command Injection Vulnerability
CVE-2018-19410 Paessler PRTG Network Monitor Local File Inclusion Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.
Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.
Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

AI Summary and Description: Yes

Summary: CISA’s update to its Known Exploited Vulnerabilities Catalog highlights four new vulnerabilities that are actively being exploited. This development underscores the critical importance of vulnerability management and timely remediation tasks, particularly among federal agencies, but also serves as a reminder for all organizations to be proactive in addressing known vulnerabilities.

Detailed Description: The text outlines CISA’s (Cybersecurity and Infrastructure Security Agency) recent inclusion of four new vulnerabilities in its Known Exploited Vulnerabilities Catalog, which serves as a key resource for organizations looking to safeguard their networks and systems from active cyber threats. Key points include:

– **New Vulnerabilities Added**:
– **CVE-2024-45195**: Apache OFBiz Forced Browsing Vulnerability
– **CVE-2024-29059**: Microsoft .NET Framework Information Disclosure Vulnerability
– **CVE-2018-9276**: Paessler PRTG Network Monitor OS Command Injection Vulnerability
– **CVE-2018-19410**: Paessler PRTG Network Monitor Local File Inclusion Vulnerability

– **Risk Assessment**: These vulnerabilities represent frequent attack vectors and pose significant risks to federal enterprises and potentially other organizations.

– **BOD 22-01 Guidance**: This operational directive emphasizes the need to address known vulnerabilities swiftly, mandating Federal Civilian Executive Branch agencies to remediate these vulnerabilities by specified deadlines. This reflects a structured approach to improving organizational cyber health.

– **Broader Implications for Organizations**: While BOD 22-01 applies only to federal agencies, CISA encourages all organizations to integrate the remediation of cataloged vulnerabilities into their overall vulnerability management strategies. This provides a relevant framework for improving cybersecurity resilience across various sectors.

– **Continuous Updates**: CISA intends to keep the catalog updated with new vulnerabilities that demonstrate active exploitation, suggesting ongoing vigilance is necessary for all organizations.

In summary, this update serves as both a notification of new vulnerabilities and a call to action for all organizations to bolster their cybersecurity defenses against known threats. Engaging in proactive vulnerability management practices will be essential for maintaining the integrity and security of information systems, thereby reducing the potential attack surface that malicious entities can exploit.

.NET 01 1 2 2024 4 5 7 a Act active exploitation active threats AGI AI alerts and Apache art as assessment attack attack surface attack vectors attacks based Binding Operational Directive by C catalog CISA command command injection Command Injection Vulnerability Common Vulnerabilities Common Vulnerabilities and Exposures core critical cross CVE cyber cyber actors cyber threat cyber threats cyberattack Cyberattacks Cybersecurity Cybersecurity and Infrastructure Security Agency cybersecurity defense cybersecurity defenses Cybersecurity Resilience D de defense demo development directive disclosure e end enterprise enterprises ERP event exp exploit Exploitation exploited vulnerabilities Exposures face fact FBI federal agencies Federal Civilian Executive Branch federal enterprise for framework g Gen Go guidance health high Highlight HR http HTTPS implications in Inclusion information information disclosure infrastructure infrastructure security injection Injection vulnerability integrity ite J k Key Known Exploited Vulnerabilities Known Exploited Vulnerabilities Catalog known vulnerabilities l led Living malicious cyber actors management management strategies media Micro Microsoft Monitor network networks news no o of on operation OPM organization organizations out over point potential pre proactive proactive vulnerability management R rag rate RCE red remediation resilience Risk Risk Assessment risks Ro s sec security security resilience Sig source SSE SSL structured structured approach Swift system systems T Task tasks text the threat threats Time to Tor TP two UI up update updates US V vectors vigilance vulnerabilities vulnerabilities catalog vulnerability Vulnerability Management vulnerability management practice vulnerability management practices Wi x