CISA has recently updated its Known Exploited Vulnerabilities (KEV) catalog by adding five critical security flaws found in software from Cisco, Hitachi Vantara, Microsoft Windows, and Progress WhatsUp Gold, highlighting concerns over their active exploitation. Among the vulnerabilities, CVE-2023-20118 poses a significant risk due to its ability to grant unauthorized root-level access on Cisco routers. Notably, CVE-2024-4885 allows for remote code execution in Progress WhatsUp Gold, representing the high stakes these flaws represent, particularly with evidence of exploitation from threat actor groups aiming to compromise networks effectively.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added five new security flaws to its KeV catalog due to active exploitation evidence.
CVE-2023-20118 allows authenticated attackers to gain root-level privileges on Cisco Small Business routers, which are unpatched due to end-of-life status.
CVE-2024-4885 in Progress WhatsUp Gold enables unauthenticated remote attackers to execute code, demonstrating critical vulnerabilities that require prompt remediation.
Sekoia reported that CVE-2023-20118 is being exploited by threat actors to incorporate affected routers into a botnet, demonstrating real-world consequences.
Collection
[
|
...
]