Upcoming Webinar: Understanding Prioritization Methods for Enterprise Vuln Management | June 28, 2023

CISA KEV

CISA KEV

March 10, 2023 CISA KEV Breakdown | Plex, XStream

Ryan Cribelar

March 10 – 2 New Vulns | CVE-2020-5741, CVE-2021-39144 In this CISA KEV Breakdown, a deserialization vulnerability in Plex and a code injection vulnerability in VMware due to the...

CISA KEV

March 7, 2023 CISA KEV Breakdown | Zoho Teclib, Apache

Ryan Cribelar

March 7 – 3 New Vulns | CVE-2022-28810, CVE-2022-35914, CVE-2022-33891 In this CISA KEV Breakdown, a password reset input RCE from ManageEngine, an RCE in a third-party library htmlawed...

CISA KEV

February 27, 2023 CISA KEV Breakdown | ZK Framework

Ryan Cribelar

February 27 – 1 New Vuln | CVE-2022-36537 In this CISA KEV Breakdown, a single vulnerability in the Java ZK Framework which can allow for code execution was added...

CISA KEV

February 21, 2023 CISA KEV Breakdown | IBM, Mitel

Ryan Cribelar

February 21 – 3 New Vulns | CVE-2022-47986, CVE-2022-41223, CVE-2022-40765 In this CISA KEV Breakdown, an IBM Aspera Faspex deserialization RCE vulnerability, as well as two Mitel MiVoice Connect...

CISA KEV

February 16, 2023 CISA KEV Breakdown | Cacti

Ryan Cribelar

February 16 – 1 New Vuln | CVE-2022-46169 In this CISA KEV Breakdown, an unauthenticated remote code execution bug in Cacti from 2022 was added. The vulnerability was patched...

CISA KEV

February 14, 2023 CISA KEV Breakdown | Microsoft, Apple

Ryan Cribelar

February 14 – 4 New Vulns | CVE-2023-23529, CVE-2023-21715, CVE-2023-23376, CVE-2023-21823 In this CISA KEV Breakdown, three zero-day Microsoft vulnerabilities and one zero-day Apple vulnerability all disclosed this year...