CISA Adds Eight Known Exploited Vulnerabilities to Catalog

Summary:

The Cybersecurity and Infrastructure Security Agency (CISA) has recently added eight new vulnerabilities to its Known Exploited Vulnerabilities Catalog, citing evidence of active exploitation. These vulnerabilities pose significant risks to the federal enterprise and serve as frequent attack vectors for malicious cyber actors.

The newly added vulnerabilities include:

1. CVE-2022-22265: Samsung Mobile Devices Use-After-Free Vulnerability
2. CVE-2014-8361: Realtek SDK Improper Input Validation Vulnerability
3. CVE-2017-6884: Zyxel EMG2926 Routers Command Injection Vulnerability
4. CVE-2021-3129: Laravel Ignition File Upload Vulnerability
5. CVE-2022-31459: Owl Labs Meeting Owl Inadequate Encryption Strength Vulnerability
6. CVE-2022-31461: Owl Labs Meeting Owl Missing Authentication for Critical Function Vulnerability
7. CVE-2022-31462: Owl Labs Meeting Owl Use of Hard-coded Credentials Vulnerability
8. CVE-2022-31463: Owl Labs Meeting Owl Improper Authentication Vulnerability

These vulnerabilities are categorized as significant risks to the federal enterprise and require immediate attention. The Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities emphasizes the importance of timely remediation of identified vulnerabilities to protect FCEB networks against active threats.

While BOD 22-01 only applies to Federal Civilian Executive Branch (FCEB) agencies, CISA strongly recommends that all organizations prioritize the remediation of these vulnerabilities as part of their vulnerability management practice. This will help reduce the exposure to cyberattacks and ensure the overall security and resilience of their networks.

The Known Exploited Vulnerabilities Catalog will continue to be updated as new vulnerabilities meet the specified criteria, and CISA encourages organizations to regularly review the catalog for newly added vulnerabilities that may affect their systems.