Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cisaCISACISA:D7385BDD2786721598A2135E182282C2
HistoryJan 18, 2022 - 12:00 a.m.

CISA Adds 13 Known Exploited Vulnerabilities to Catalog

2022-01-1800:00:00
us-cert.cisa.gov
238

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

JSON

CISA has added 13 new vulnerabilities to its [Known Exploited Vulnerabilities Catalog](<https://www.cisa.gov/known-exploited-vulnerabilities-catalog >), based on evidence that threat actors are actively exploiting the vulnerabilities listed in the table below. These types of vulnerabilities are a frequent attack vector for malicious cyber actors of all types and pose significant risk to the federal enterprise.

CVE Number CVE Title Required Action Due Date
CVE-2021-32648 October CMS Improper Authentication 2/1/2022
CVE-2021-21315 System Information Library for node.js Command Injection Vulnerability 2/1/2022
CVE-2021-21975 Server Side Request Forgery in vRealize Operations Manager API Vulnerability 2/1/2022
CVE-2021-22991 BIG-IP Traffic Microkernel Buffer Overflow Vulnerability 2/1/2022
CVE-2021-25296 Nagios XI OS Command Injection Vulnerability 2/1/2022
CVE-2021-25297 Nagios XI OS Command Injection Vulnerability 2/1/2022
CVE-2021-25298 Nagios XI OS Command Injection Vulnerability 2/1/2022
CVE-2021-33766 Microsoft Exchange Server Information Disclosure Vulnerability 2/1/2022
CVE-2021-40870 Aviatrix Controller Unrestricted Upload of File Vulnerability 2/1/2022
CVE-2020-11978 Apache Airflow Command Injection Vulnerability 7/18/2022
CVE-2020-13671 Drupal Core Unrestricted Upload of File Vulnerability 7/18/2022
CVE-2020-13927 Apache Airflow Experimental API Authentication Bypass Vulnerability 7/18/2022
CVE-2020-14864 Oracle Corporate Business Intelligence Enterprise Edition Path Traversal Vulnerability 7/18/2022

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known CVEs that carry significant risk to the federal enterprise. BOD 22-01 requires FCEB agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of [Catalog vulnerabilities](<https://www.cisa.gov/known-exploited-vulnerabilities-catalog >) as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the Catalog that meet the meet the [specified criteria](<https://www.cisa.gov/known-exploited-vulnerabilities >).

This product is provided subject to this Notification and this Privacy & Use policy.

Please share your thoughts.

We recently updated our anonymous product survey; we’d welcome your feedback.

Related

zdt 7
metasploit 3
nessus 11
packetstorm 8
checkpoint_advisories 10
attackerkb 14
githubexploit 19
rapid7blog 4
exploitdb 2
thn 3
prion 13
cve 13
osv 16
cisa_kev 13
hackerone 2
zdi 1
nuclei 9
hivepro 1
github 6
veracode 4
threatpost 9
drupal 1
ubuntucve 1
openvas 6
malwarebytes 1
mscve 1
ibm 2
debiancve 1
alpinelinux 1
redhatcve 1
huntr 1
nodejs 1
f5 1
vmware 2
debian 1
seebug 2
fedora 4
msrc 2
mskb 1
kaspersky 1
zdt
zdt
Nagios XI 5.7.5 Remote Code Execution Exploit
2023-02-13 00:00:00
Nagios XI 5.7.5 Remote Code Execution Exploit
2021-02-26 00:00:00
Apache Airflow 1.10.10 - (Example Dag) Remote Code Execution Exploit
2021-06-02 00:00:00
metasploit
metasploit
Nagios XI 5.5.6 to 5.7.5 - ConfigWizards Authenticated Remote Code Exection
2023-02-07 20:18:03
Apache Airflow 1.10.10 - Example DAG Remote Code Execution
2023-09-17 14:42:26
VMware vRealize Operations (vROps) Manager SSRF RCE
2021-04-21 15:42:10
nessus
nessus
Nagios XI 5.7.5 Command Injection
2022-02-04 00:00:00
F5 Networks BIG-IP : TMM buffer-overflow vulnerability (K56715231)
2021-03-10 00:00:00
NodeJS System Information Library Command Injection (CVE-2021-21315)
2022-08-10 00:00:00
packetstorm
packetstorm
Nagios XI 5.7.5 Remote Code Execution
2023-02-08 00:00:00
Nagios XI 5.7.5 Remote Code Execution
2021-02-26 00:00:00
Apache Airflow 1.10.10 Remote Code Execution
2021-06-02 00:00:00
checkpoint_advisories
checkpoint_advisories
Nagios XI Remote Code Execution (CVE-2021-25296; CVE-2021-25297; CVE-2021-25298; CVE-2021-25299)
2021-02-18 00:00:00
Apache Airflow Command Injection (CVE-2020-11978; CVE-2020-13927)
2021-06-16 00:00:00
Microsoft Exchange Information Disclosure (CVE-2021-33766)
2021-09-05 00:00:00
attackerkb
attackerkb
CVE-2021-25298
2021-02-15 00:00:00
CVE-2021-25297
2021-02-15 00:00:00
CVE-2021-40870
2021-09-13 00:00:00
githubexploit
githubexploit
Exploit for Command Injection in Apache Airflow
2021-05-22 15:58:01
Exploit for Interpretation Conflict in Aviatrix Controller
2021-10-07 17:19:12
Exploit for CVE-2021-32648
2022-01-20 09:28:13
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up
2023-09-22 18:04:42
Metasploit Weekly Wrap-Up
2023-02-10 19:39:42
Metasploit Wrap-Up
2021-04-30 17:42:19
exploitdb
exploitdb
Apache Airflow 1.10.10 - &#039;Example Dag&#039; Remote Code Execution
2021-06-02 00:00:00
Oracle Business Intelligence Enterprise Edition 5.5.0.0.0 / 12.2.1.3.0 / 12.2.1.4.0 - &#039;getPreviewImage&#039; Directory Traversal/Local File Inclusion
2020-10-28 00:00:00
thn
thn
Massive Cyber Attack Knocks Down Ukrainian Government Websites
2022-01-15 06:27:00
New Microsoft Exchange 'ProxyToken' Flaw Lets Attackers Reconfigure Mailboxes
2021-08-31 03:27:00
Critical Auth Bypass Bug Found in VMware Data Center Security Product
2021-04-07 08:03:00
prion
prion
Directory traversal
2021-09-13 08:15:00
Command injection
2021-02-15 13:15:00
Design/Logic Flaw
2021-08-26 19:15:00
cve
cve
CVE-2021-40870
2021-09-13 08:15:00
CVE-2021-33766
2021-07-14 18:15:00
CVE-2021-25296
2021-02-15 13:15:00
osv
osv
Account Takeover in Octobercms
2021-08-30 16:13:02
CVE-2021-32648
2021-08-26 19:15:07
BIT-airflow-2020-13927
2024-03-06 11:00:56
cisa_kev
cisa_kev
Nagios XI OS Command Injection
2022-01-18 00:00:00
F5 BIG-IP Traffic Management Microkernel Buffer Overflow
2022-01-18 00:00:00
Nagios XI OS Command Injection
2022-01-18 00:00:00
hackerone
hackerone
Informatica: CVE-2021-40870 in [███]
2021-10-06 04:33:57
Elastic: CVE-2021-40870 on [52.204.160.31]
2021-10-01 20:20:56
zdi
zdi
Microsoft Exchange Server ECP Authentication Bypass Information Disclosure Vulnerability
2021-07-15 00:00:00
nuclei
nuclei
Aviatrix Controller 6.x before 6.5-1804.1922 - Remote Command Execution
2021-09-30 06:57:47
Nagios 5.5.6-5.7.5 - Authenticated Remote Command Injection
2023-01-24 13:53:29
Apache Airflow <=1.10.10 - Remote Code Execution
2021-06-03 08:27:09
hivepro
hivepro
Ukraine government entities targeted by a destructive malware “Whispergate”
2022-01-17 14:38:43
github
github
Account Takeover in Octobercms
2021-08-30 16:13:02
Remote code execution in Apache Airflow
2020-07-27 16:57:33
Command Injection Vulnerability
2021-02-16 16:51:04
veracode
veracode
Remote Code Execution (RCE)
2020-07-20 07:24:23
OS Command Injection
2021-02-17 03:15:26
Remote Code Execution (RCE)
2020-11-20 13:22:25
threatpost
threatpost
T-Mobile’s Security Is ‘Awful,’ Says Purported Thief
2021-08-28 16:58:45
LockBit Gang to Publish 103GB of Bangkok Airways Customer Data
2021-08-30 15:14:21
Critical Azure Cosmos DB Bug Allows Full Cloud Account Takeover
2021-08-27 16:49:23
drupal
drupal
Drupal core - Critical - Remote code execution - SA-CORE-2020-012
2020-11-18 00:00:00
ubuntucve
ubuntucve
CVE-2020-13671
2020-11-20 00:00:00
openvas
openvas
Drupal 7.x, 8.x, 9.x RCE Vulnerability (SA-CORE-2020-012) - Linux
2020-11-20 00:00:00
Drupal 7.x, 8.x, 9.x RCE Vulnerability (SA-CORE-2020-012) - Windows
2020-11-20 00:00:00
Debian: Security Advisory (DLA-2458-1)
2020-11-20 00:00:00
malwarebytes
malwarebytes
ProxyToken: Another nail-biter from Microsoft Exchange
2021-08-31 13:29:05
mscve
mscve
Microsoft Exchange Server Information Disclosure Vulnerability
2021-07-13 07:00:00
ibm
ibm
Security Bulletin: IBM API Connect's Developer Portal is vulnerable to arbitrary code excution in Drupal Core (CVE-2020-13671)
2021-02-02 14:58:19
Security Bulletin: Vulnerabilities in Apache and Node.js affect IBM Spectrum Protect Plus
2021-04-24 06:55:55
debiancve
debiancve
CVE-2020-13671
2020-11-20 16:15:00
alpinelinux
alpinelinux
CVE-2020-13671
2020-11-20 16:15:00
redhatcve
redhatcve
CVE-2020-13671
2022-05-20 23:37:25
huntr
huntr
Denial of Service in sebhildebrandt/systeminformation
2021-02-11 00:00:00
nodejs
nodejs
Command Injection
2021-02-24 03:24:56
f5
f5
K56715231 : TMM buffer-overflow vulnerability CVE-2021-22991
2021-03-10 00:00:00
vmware
vmware
VMware vRealize Operations updates address Server Side Request Forgery and Arbitrary File Write vulnerabilities (CVE-2021-21975, CVE-2021-21983)
2021-03-30 00:00:00
VMware vRealize Operations updates address Server Side Request Forgery and Arbitrary File Write vulnerabilities (CVE-2021-21975, CVE-2021-21983)
2021-03-30 00:00:00
debian
debian
[SECURITY] [DLA 2458-1] drupal7 security update
2020-11-19 11:47:17
seebug
seebug
VMware vRealize Operations Manager SSRF和文件读取漏洞(CVE-2021-21975 CVE-2021-21983)
2021-03-31 00:00:00
F5 Networks 多个漏洞(CVE-2021-22986、CVE-2021-22987、CVE-2021-22988、CVE-2021-22989、CVE-2021-22990、CVE-2021-22991、CVE-2021-22992)
2021-03-12 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: drupal7-7.74-1.fc33
2020-11-27 01:24:16
[SECURITY] Fedora 32 Update: drupal7-7.74-1.fc32
2020-11-27 01:12:43
[SECURITY] Fedora 32 Update: drupal8-8.9.11-1.fc32
2020-12-15 01:41:04
msrc
msrc
April 2021 Update Tuesday packages now available
2021-04-13 07:00:00
April 2021 Update Tuesday packages now available
2021-04-13 07:00:00
mskb
mskb
Description of the security update for Microsoft Exchange Server 2019, 2016, and 2013: April 13, 2021 (KB5001779)
2021-07-13 07:00:00
kaspersky
kaspersky
KLA12224 Multiple vulnerabilities in Microsoft Exchange Server
2021-07-13 00:00:00

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

JSON
Related for CISA:D7385BDD2786721598A2135E182282C2
zdt7metasploit3nessus11packetstorm8checkpoint_advisories10attackerkb14githubexploit19rapid7blog4exploitdb2thn3prion13cve13osv16cisa_kev13hackerone2zdi1nuclei9hivepro1github6veracode4threatpost9drupal1ubuntucve1openvas6malwarebytes1mscve1ibm2debiancve1alpinelinux1redhatcve1huntr1nodejs1f51vmware2debian1seebug2fedora4msrc2mskb1kaspersky1