About 50 results
Open links in new tab
  1. cisa.gov
    https://www.cisa.gov › known-exploited-vulnerabilities-catalog

    Known Exploited Vulnerabilities Catalog - CISA

    For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative …

  2. cisa.gov
    https://www.cisa.gov › news-events › cybersecurity-advisories

    Critical Vulnerabilities in Microsoft Windows Operating Systems

    Jan 14, 2020 · An attacker could remotely exploit these vulnerabilities to decrypt, modify, or inject data on user connections: CryptoAPI spoofing vulnerability – CVE-2020-0601: This vulnerability affects all …

  3. cisa.gov
    https://www.cisa.gov › ... › cisa-adds-two-known-exploited-vulnerabilities-catalog

    CISA Adds Two Known Exploited Vulnerabilities to Catalog

    May 1, 2025 · CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.

  4. cisa.gov
    https://www.cisa.gov › news-events › cybersecurity-advisories

    2023 Top Routinely Exploited Vulnerabilities - CISA

    Nov 12, 2024 · Technical Details Key Findings In 2023, malicious cyber actors exploited more zero-day vulnerabilities to compromise enterprise networks compared to 2022, allowing them to conduct cyber …

  5. cisa.gov
    https://www.cisa.gov › known-exploited-vulnerabilities

    Reducing the Significant Risk of Known Exploited Vulnerabilities

    Learn about the importance of CISA's Known Exploited Vulnerability (KEV) catalog and how to use it to help build a collective resilience across the cybersecurity community.

  6. cisa.gov
    https://www.cisa.gov › news-events › cybersecurity-advisories

    Top Routinely Exploited Vulnerabilities - CISA

    Aug 20, 2021 · This advisory provides details on the top 30 vulnerabilities—primarily Common Vulnerabilities and Exposures (CVEs)—routinely exploited by malicious cyber actors in 2020 and …

  7. cisa.gov
    https://www.cisa.gov › news-events › cybersecurity-advisories

    2022 Top Routinely Exploited Vulnerabilities - CISA

    Aug 3, 2023 · Additional Routinely Exploited Vulnerabilities In addition to the 12 vulnerabilities listed in Table 1, the authoring agencies identified vulnerabilities—listed in Table 2—that were also routinely …

  8. cisa.gov
    https://www.cisa.gov › news-events › alerts › cisa-adds-one-known-exploited...

    CISA Adds One Known Exploited Vulnerability, CVE-2025-53770 …

    Jul 20, 2025 · CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. See CISA’s Alert Microsoft Releases Guidance on …

  9. cisa.gov
    https://www.cisa.gov › ... › secure-design-alert-eliminating-buffer-overflow-vul…

    Secure by Design Alert: Eliminating Buffer Overflow Vulnerabilities

    Feb 12, 2025 · This Secure by Design Alert is part of an ongoing series aimed at advancing industry-wide best practices to eliminate entire classes of vulnerabilities during the design and development …

  10. cisa.gov
    https://www.cisa.gov › news-events › news

    KEV Catalog Reaches 1000, What Does That Mean and What Have We …

    Sep 18, 2023 · We know how to reduce the prevalence of vulnerabilities as a design decision – by using memory safe programming languages, by using web template frameworks and parameterized …

Content was generated with AI. Learn more