CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.

CVE-2023-38606 Apple Multiple Products Kernel Unspecified Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise. Note: To view other newly added vulnerabilities in the catalog, click on the arrow in the “Date Added to Catalog” column—which will sort by descending dates.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Source link

CISA Adds One Known Exploited Vulnerability to Catalog

Rockwell Automation Lifecycle Services with Cisco

CISA Releases One Industrial Control Systems Advisory

Baxter Welch Allyn Configuration Tool

Cisco Releases Security Updates for Multiple Products

SolisCloud Monitoring Platform | CISA

Advantech iView | CISA

Johnson Controls iSTAR | CISA

SolisCloud Monitoring Platform | CISA

Advantech iView | CISA

Johnson Controls iSTAR | CISA

Senior Manager, Cybersecurity IR and SOC

Senior Manager, Cybersecurity GRC

Cybersecurity Analyst