Security News > 2024 > November > CISA Flags Two Actively Exploited Palo Alto Flaws; New RCE Attack Confirmed
2024-11-15 05:04
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday warned that two more flaws impacting the Palo Alto Networks Expedition have come under active exploitation in the wild. To that, it has added the vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, requiring Federal Civilian Executive Branch (FCEB) agencies to apply the necessary updates by December 5,
News URL
https://thehackernews.com/2024/11/cisa-flags-critical-palo-alto-network.html
Related news
- CISA Warns of CentreStack's Hard-Coded MachineKey Vulnerability Enabling RCE Attacks (source)
- CISA Warns of Sitecore RCE Flaws; Active Exploits Hit Next.js and DrayTek Devices (source)
- CISA tags SonicWall VPN flaw as actively exploited in attacks (source)
- Active! Mail RCE flaw exploited in attacks on Japanese orgs (source)
- Craft CMS RCE exploit chain used in zero-day attacks to steal data (source)
- CISA tags Broadcom Fabric OS, CommVault flaws as exploited in attacks (source)
- Apple 'AirBorne' flaws can lead to zero-click AirPlay RCE attacks (source)
- Samsung MagicINFO 9 Server RCE flaw now exploited in attacks (source)