New Cyber Threats Unveiled: CISA Adds Trio of Vulnerabilities to Exploited List

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, featuring two Draytek VigorConnect issues and one Kingsoft WPS Office flaw. BOD 22-01 urges federal agencies to fix these vulnerabilities promptly to thwart cyber threats. Prioritize timely remediation to keep those pesky cyber gremlins at bay!

1P
Published: September 3, 2024 3:46 pmAdded: September 3, 2024 at 9:07 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Looks like the cybersecurity world just added a few more entries to its “naughty list.” With these new vulnerabilities, it’s safe to say that hackers are having their own version of Christmas come early!

Key Points:

  • Three new vulnerabilities added to CISA’s Known Exploited Vulnerabilities Catalog.
  • Includes two Draytek VigorConnect Path Traversal Vulnerabilities and one Kingsoft WPS Office Path Traversal Vulnerability.
  • These vulnerabilities are frequent attack vectors for malicious cyber actors.
  • Binding Operational Directive 22-01 mandates remediation of these vulnerabilities for Federal Civilian Executive Branch agencies.
  • CISA encourages all organizations to prioritize timely remediation of these vulnerabilities.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?