Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cisaCISACISA:380E63A9EAAD85FA1950A6973017E11B
HistoryDec 10, 2021 - 12:00 a.m.

CISA Adds Thirteen Known Exploited Vulnerabilities to Catalog

2021-12-1000:00:00
us-cert.cisa.gov
140

10 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON

CISA has added thirteen new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence that threat actors are actively exploiting the vulnerabilities listed in the table below. These types of vulnerabilities are a frequent attack vector for malicious cyber actors of all types and pose significant risk to the federal enterprise.

CVE Number

|

CVE Title

|

Remediation Due Date

—|—|—

CVE-2021-44228

|

Apache Log4j2 Remote Code Execution Vulnerability

|

12/24/2021

CVE-2021-44515

|

Zoho Corp. Desktop Central Authentication Bypass Vulnerability

|

12/24/2021

CVE-2021-44168

|

Fortinet FortiOS Arbitrary File Download Vulnerability

|

12/24/2021

CVE-2021-35394

|

Realtek Jungle SDK Remote Code Execution Vulnerability

|

12/24/2021

CVE-2020-8816

|

Pi-Hole AdminLTE Remote Code Execution Vulnerability

|

6/10/2022

CVE-2020-17463

|

Fuel CMS SQL Injection Vulnerability

|

6/10/2022

CVE-2019-7238

|

Sonatype Nexus Repository Manager Incorrect Access Control Vulnerability

|

6/10/2022

CVE-2019-13272

|

Linux Kernel Improper Privilege Management Vulnerability

|

6/10/2022

CVE-2019-10758

|

MongoDB mongo-express Remote Code Execution Vulnerability

|

6/10/2022

CVE-2019-0193

|

Apache Solr DataImportHandler Code Injection Vulnerability

|

6/10/2022

CVE-2017-17562

|

Embedthis GoAhead Remote Code Execution Vulnerability

|

6/10/2022

CVE-2017-12149

|

Red Hat Jboss Application Server Remote Code Execution Vulnerability

|

6/10/2022

CVE-2010-1871

|

Red Hat Linux JBoss Seam 2 Remote Code Execution Vulnerability

|

6/10/2022

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known CVEs that carry significant risk to the federal enterprise. BOD 22-01 requires FCEB agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the Catalog that meet the meet the specified criteria.

This product is provided subject to this Notification and this Privacy & Use policy.

Please share your thoughts.

We recently updated our anonymous product survey; we’d welcome your feedback.

Related

cisa 2
attackerkb 11
cisa_kev 12
fortinet 1
cve 13
seebug 3
prion 13
checkpoint_advisories 10
zdt 10
openvas 7
canvas 1
packetstorm 8
metasploit 4
veracode 6
osv 11
githubexploit 22
nessus 13
exploitpack 2
nuclei 7
cnvd 2
redhat 3
srcincite 1
thn 2
redhatcve 3
ubuntucve 3
github 2
debian 4
f5 1
fedora 1
exploitdb 8
debiancve 2
myhack58 2
0daydb 2
oraclelinux 1
hivepro 1
ibm 4
threatpost 1
cisa
cisa
CISA Adds 13 Known Exploited Vulnerabilities to Catalog
2021-12-10 00:00:00
Zoho Releases Security Advisory for ManageEngine Desktop Central and Desktop Central MSP
2021-12-06 00:00:00
attackerkb
attackerkb
CVE-2017-12149
2017-10-04 00:00:00
CVE-2021-44168
2022-01-04 00:00:00
CVE-2017-17562
2017-12-12 00:00:00
cisa_kev
cisa_kev
Fortinet FortiOS Arbitrary File Download
2021-12-10 00:00:00
MongoDB mongo-express Remote Code Execution Vulnerability
2021-12-10 00:00:00
Embedthis GoAhead Remote Code Execution Vulnerability
2021-12-10 00:00:00
fortinet
fortinet
Protect
2021-12-07 00:00:00
cve
cve
CVE-2021-44168
2022-01-04 13:15:00
CVE-2017-17562
2017-12-12 19:29:00
CVE-2017-12149
2017-10-04 21:01:00
seebug
seebug
JBOSSAS 5.x/6.x 反序列化命令执行漏洞(CVE-2017-12149)
2017-11-22 00:00:00
GOAHEAD 命令执行漏洞(CVE-2017-17562)
2017-12-18 00:00:00
JBoss Seam参数化EL表达式远程代码执行漏洞
2010-07-29 00:00:00
prion
prion
Design/Logic Flaw
2022-01-04 13:15:00
Remote code execution
2017-12-12 19:29:00
Authentication flaw
2021-12-12 05:15:00
checkpoint_advisories
checkpoint_advisories
GoAhead LD_PRELOAD Remote Code Execution (CVE-2017-17562)
2017-12-24 00:00:00
MongoDB mongo-express Remote Code Execution (CVE-2019-10758)
2020-01-02 00:00:00
Red Hat Jboss Application Server Remote Code Execution (CVE-2017-12149)
2018-01-07 00:00:00
zdt
zdt
GoAhead Web Server 2.5 < 3.6.5 - HTTPd LD_PRELOAD Arbitrary Module Load Exploit
2018-01-25 00:00:00
GoAhead httpd 2.5 < 3.6.5 - LD_PRELOAD Remote Code Execution Exploit
2017-12-18 00:00:00
JBOSSAS 5.x/6.x Deserializer Vulnerability
2017-11-27 00:00:00
openvas
openvas
GoAhead Server RCE Vulnerability
2017-12-19 00:00:00
Debian: Security Advisory (DLA-1863-1)
2019-07-24 00:00:00
Fedora Update for kernel-headers FEDORA-2019-a95015e60f
2019-07-20 00:00:00
canvas
canvas
Immunity Canvas: GOAHEAD_ENV_RCE
2017-12-12 19:29:00
packetstorm
packetstorm
GoAhead Web Server LD_PRELOAD Arbitrary Module Load
2018-01-24 00:00:00
JBoss Seam 2 File Upload / Execute
2015-04-03 00:00:00
Linux Kernel 5.1.x PTRACE_TRACEME pkexec Local Privilege Escalation
2021-11-23 00:00:00
metasploit
metasploit
GoAhead Web Server LD_PRELOAD Arbitrary Module Load
2017-12-18 16:51:47
JBoss Seam 2 File Upload and Execute
2015-02-18 01:25:01
Linux Polkit pkexec helper PTRACE_TRACEME local root exploit
2019-09-05 17:00:44
veracode
veracode
Remote Code Execution (RCE)
2019-12-26 01:32:21
Arbitrary Code Execution
2019-01-15 09:24:03
Arbitrary Code Execution
2020-04-10 00:46:25
osv
osv
CVE-2019-10758
2019-12-24 22:15:11
Remote Code Execution Vulnerability in NPM mongo-express
2019-12-30 19:30:31
CVE-2019-13272
2019-07-17 13:15:10
githubexploit
githubexploit
Exploit for Vulnerability in Mongo-Express Project Mongo-Express
2020-12-01 09:18:57
Exploit for Vulnerability in Mongo-Express Project Mongo-Express
2020-01-05 14:05:56
Exploit for Download of Code Without Integrity Check in Fortinet Fortios
2023-02-08 07:30:52
nessus
nessus
Fortinet FortiOS < 6.0.14 / 6.2 < 6.2.10 / 6.4 < 6.4.8 / 7.0 < 7.0.3 Arbitrary File Download (FG-IR-21-201)
2022-06-06 00:00:00
RHEL 6 : JBoss EAP (RHSA-2018:1607)
2018-05-23 00:00:00
ManageEngine Desktop Central < 10.1.2127.18 / 10.1.2128.0 < 10.1.2137.3 Authentication Bypass (CVE-2021-44515)
2021-12-06 00:00:00
exploitpack
exploitpack
GoAhead Web Server 2.5 3.6.5 - HTTPd LD_PRELOAD Remote Code Execution
2017-12-18 00:00:00
Linux Kernel 4.10 5.1.17 - PTRACE_TRACEME pkexec Local Privilege Escalation
2019-07-24 00:00:00
nuclei
nuclei
Embedthis GoAhead <3.6.5 - Remote Code Execution
2021-03-27 21:22:33
Jboss Application Server - Remote Code Execution
2021-05-11 11:07:05
Zoho ManageEngine Desktop Central - Remote Code Execution
2022-04-24 10:12:25
cnvd
cnvd
Fortinet FortiOS has an unspecified vulnerability (CNVD-2022-06912)
2021-12-14 00:00:00
Zoho ManageEngine Desktop Central MSP Licensing Issue Vulnerability
2021-12-09 00:00:00
redhat
redhat
(RHSA-2018:1607) Critical: Red Hat JBoss Enterprise Application Platform 5.2 security update
2018-05-17 18:11:20
(RHSA-2018:1608) Critical: Red Hat JBoss Enterprise Application Platform 5.2 security update
2018-05-17 18:15:33
(RHSA-2010:0564) Important: jboss-seam2 security update
2010-07-27 00:00:00
srcincite
srcincite
SRC-2022-0001 : Zoho ManageEngine Desktop Central StateFilter Arbitrary Forward Authentication Bypass Vulnerability
2019-12-12 00:00:00
thn
thn
Realtek Vulnerability Under Attack: Over 134 Million Attempts to Hack IoT Devices
2023-01-30 09:30:00
Wormable Gitpaste-12 Botnet Returns to Target Linux Servers, IoT Devices
2020-12-15 11:18:00
redhatcve
redhatcve
CVE-2017-12149
2017-08-30 06:18:22
CVE-2019-13272
2019-10-16 06:44:39
CVE-2019-0193
2019-12-20 15:14:42
ubuntucve
ubuntucve
CVE-2017-12149
2017-10-04 00:00:00
CVE-2019-13272
2019-07-17 00:00:00
CVE-2019-0193
2019-08-01 00:00:00
github
github
Remote Code Execution Vulnerability in NPM mongo-express
2019-12-30 19:30:31
XML External Entity (XXE) Injection in Apache Solr
2019-08-01 19:17:35
debian
debian
[SECURITY] [DLA 1863-1] linux-4.9 security update
2019-07-23 17:48:52
[SECURITY] [DLA 1954-1] lucene-solr security update
2019-10-10 19:16:36
[SECURITY] [DLA 2327-1] lucene-solr security update
2020-08-16 00:06:48
f5
f5
K91025336 : Linux kernel vulnerability CVE-2019-13272
2019-08-30 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: kernel-headers-5.1.18-200.fc29
2019-07-19 03:07:30
exploitdb
exploitdb
Fuel CMS 1.4.7 - &#039;col&#039; SQL Injection (Authenticated)
2020-08-11 00:00:00
GoAhead Web Server 2.5 &lt; 3.6.5 - HTTPd &#039;LD_PRELOAD&#039; Arbitrary Module Load (Metasploit)
2018-01-24 00:00:00
GoAhead Web Server 2.5 &lt; 3.6.5 - HTTPd &#039;LD_PRELOAD&#039; Remote Code Execution
2017-12-18 00:00:00
debiancve
debiancve
CVE-2019-13272
2019-07-17 13:15:00
CVE-2019-0193
2019-08-01 14:15:00
myhack58
myhack58
CVE-2019-0193: Apache Solr remote command execution vulnerability alerts-a vulnerability alert-the black bar safety net
2019-08-06 00:00:00
Nexus Repository Manager 3 new vulnerability has been used in mining Trojan spread, users are advised to fix as soon as possible-vulnerability warning-the black bar safety net
2019-03-12 00:00:00
0daydb
0daydb
WordPress Multi-Scheduler 1.0.0 - Cross Site Request Forgery
2020-05-30 14:58:49
Pi-Hole 4.3.2 DHCP MAC OS CVE-2020-8816 - Command Execution
2020-05-30 14:57:51
oraclelinux
oraclelinux
kernel security update
2019-08-19 00:00:00
hivepro
hivepro
Several Zoho ManageEngine products have been exploited
2021-12-05 12:31:49
ibm
ibm
Security Bulletin: IBM Netcool Agile Service Manager is affected by a vulnerability in Apache Log4j (CVE-2021-44228)
2021-12-23 18:45:10
Security Bulletin: Apache Log4j Vulnerability Affects IBM Sterling Control Center (CVE-2021-44228)
2021-12-17 18:27:06
Security Bulletin: IBM Cloud Pak for Applications is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-44228)
2021-12-22 06:59:57
threatpost
threatpost
Free HermeticRansom Ransomware Decryptor Released
2022-03-04 16:56:27

10 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

JSON
Related for CISA:380E63A9EAAD85FA1950A6973017E11B
cisa2attackerkb11cisa_kev12fortinet1cve13seebug3prion13checkpoint_advisories10zdt10openvas7canvas1packetstorm8metasploit4veracode6osv11githubexploit22nessus13exploitpack2nuclei7cnvd2redhat3srcincite1thn2redhatcve3ubuntucve3github2debian4f51fedora1exploitdb8debiancve2myhack5820daydb2oraclelinux1hivepro1ibm4threatpost1