CISA Adds 5 Exploited Vulnerabilities: Key Insights and Actions

CISA Adds Five Exploited Vulnerabilities to Its Catalog​

The Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities Catalog by adding five new vulnerabilities that have been actively exploited. These vulnerabilities, identified in various widely used enterprise technologies, serve as a stark reminder of the constant threat posed by cyber attackers looking to exploit weaknesses in critical systems.

---

The Newly Cataloged Vulnerabilities​

CISA’s latest additions include:

• CVE-2025-25181: Advantive VeraCore SQL Injection Vulnerability
  This vulnerability can allow malicious actors to execute arbitrary SQL commands, potentially leading to unauthorized data access or manipulation.
• CVE-2024-57968: Advantive VeraCore Unrestricted File Upload Vulnerability
  With this flaw, attackers might upload malicious files without proper restrictions, opening the door to further exploitation of affected systems.
• CVE-2024-13159: Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability
  This vulnerability enables attackers to traverse directories and access sensitive files, placing critical systems at risk of data breaches.
• CVE-2024-13160: Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability
  Similar to CVE-2024-13159, this vulnerability also pertains to directory traversal issues and can lead to unauthorized file access.
• CVE-2024-13161: Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability
  Another variant affecting Ivanti Endpoint Manager, highlighting persistent challenges in ensuring robust security for these systems.

These vulnerabilities represent common attack vectors that can be exploited if not remediated promptly. They underscore the importance of continuous vulnerability management, especially within federal and critical enterprise environments.

---

The Role of BOD 22-01​

To address these risks, the Binding Operational Directive (BOD) 22-01 was established. This directive:

• Mandates Remediation: Requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by a set due date.
• Protects Critical Networks: Aims to reduce the significant risk posed by known exploited vulnerabilities, ensuring that federal networks are safeguarded against active threats.

Although BOD 22-01 is specific to FCEB agencies, CISA strongly recommends that all organizations prioritize the timely remediation of cataloged vulnerabilities as part of their broader vulnerability management practices.

---

Why It Matters​

These types of vulnerabilities are prime targets for cyber attackers. Unresolved issues in widely used software can lead to:

• Unauthorized Access: Attackers can gain control over systems and steal sensitive data.
• Data Exfiltration: Vulnerabilities such as SQL injection and file upload flaws provide a pathway to extract critical information.
• Operational Risks: Breaches can disrupt operations, leading to significant financial and reputational damage.

By continuously updating the Known Exploited Vulnerabilities Catalog, CISA provides organizations with essential information to enhance their cybersecurity posture and mitigate risks proactively.

---

Moving Forward​

Organizations are urged to:

• Prioritize Patch Management: Regularly update software and remediate vulnerabilities highlighted in the catalog.
• Review Vulnerability Management Practices: Ensure that procedures are in place to identify and fix exploited vulnerabilities promptly.
• Consult Official Documentation: Check the CISA Known Exploited Vulnerabilities Catalog and the BOD 22-01 Fact Sheet for detailed guidance on compliance and remediation efforts.

For more information on the vulnerabilities and detailed procedures for remediation, visit the CISA Known Exploited Vulnerabilities Catalog and review the BOD 22-01 Fact Sheet.
Source: CISA

---

Source: CISA CISA Adds Five Known Exploited Vulnerabilities to Catalog | CISA