The Cybersecurity and Infrastructure Security Agency (CISA) has identified two new security vulnerabilities that are being actively exploited by malicious actors. These vulnerabilities pose a significant risk to federal networks, and CISA has created the Known Exploited Vulnerabilities Catalog to help agencies identify and address these threats. Binding Operational Directive 22-01 requires agencies to take action to protect their networks from these vulnerabilities by a certain date. CISA encourages all organizations to prioritize the remediation of these vulnerabilities as part of their vulnerability management practice. CISA will continue to add new vulnerabilities to the Catalog that meet the specified criteria.
This Cyber News was published on us-cert.cisa.gov. Publication date: Thu, 02 Feb 2023 17:33:02 +0000