GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE

  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Notices by CISA KEV Tracker (cisakevtracker@mastodon.social)

  1. Embed this notice
    CISA KEV Tracker (cisakevtracker@mastodon.social)'s status on Wednesday, 02-Apr-2025 04:06:35 JST CISA KEV Tracker CISA KEV Tracker

    CVE ID: CVE-2025-24813
    Vendor: Apache
    Product: Tomcat
    Date Added: 2025-04-01
    Vulnerability: Apache Tomcat Path Equivalence Vulnerability
    Notes: https://lists.apache.org/thread/j5fkjv2k477os90nczf2v9l61fb0kkgq ; https://nvd.nist.gov/vuln/detail/CVE-2025-24813
    CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-24813

    In conversation about 3 days ago from mastodon.social permalink

    Attachments

    1. No result found on File_thumbnail lookup.
      https://lists.apache.org/thread/j5fkjv2k477os90nczf2v9l61fb0kkgq

  2. Embed this notice
    CISA KEV Tracker (cisakevtracker@mastodon.social)'s status on Tuesday, 11-Mar-2025 03:02:03 JST CISA KEV Tracker CISA KEV Tracker

    CVE ID: CVE-2024-13161
    Vendor: Ivanti
    Product: Endpoint Manager (EPM)
    Date Added: 2025-03-10
    Vulnerability: Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability
    Notes: https://forums.ivanti.com/s/article/Security-Advisory-EPM-January-2025-for-EPM-2024-and-EPM-2022-SU6?language=en_US ; https://nvd.nist.gov/vuln/detail/CVE-2024-13161
    CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2024-13161

    In conversation about a month ago from mastodon.social permalink

    Attachments

    1. No result found on File_thumbnail lookup.
      Ivanti Community
    2. No result found on File_thumbnail lookup.
      NVD - CVE-2024-13161
  3. Embed this notice
    CISA KEV Tracker (cisakevtracker@mastodon.social)'s status on Saturday, 25-Jan-2025 02:41:51 JST CISA KEV Tracker CISA KEV Tracker

    CVE ID: CVE-2025-23006
    Vendor: SonicWall
    Product: SMA1000 Appliances
    Date Added: 2025-01-24
    Vulnerability: SonicWall SMA1000 Appliances Deserialization Vulnerability
    Notes: https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0002 ; https://nvd.nist.gov/vuln/detail/CVE-2025-23006
    CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2025-23006

    In conversation about 2 months ago from mastodon.social permalink

    Attachments

    1. No result found on File_thumbnail lookup.
      Security Advisory
    2. No result found on File_thumbnail lookup.
      NVD - CVE-2025-23006
  4. Embed this notice
    CISA KEV Tracker (cisakevtracker@mastodon.social)'s status on Wednesday, 18-Dec-2024 01:12:35 JST CISA KEV Tracker CISA KEV Tracker

    CVE ID: CVE-2024-55956
    Vendor: Cleo
    Product: Multiple Products
    Date Added: 2024-12-17
    Vulnerability: Cleo Multiple Products Unauthenticated File Upload Vulnerability
    Notes: https://support.cleo.com/hc/en-us/articles/28408134019735-Cleo-Product-Security-Update-CVE-2024-55956 ; https://nvd.nist.gov/vuln/detail/CVE-2024-55956
    CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2024-55956

    In conversation about 4 months ago from mastodon.social permalink

    Attachments


    2. No result found on File_thumbnail lookup.
      NVD - CVE-2024-55956
  5. Embed this notice
    CISA KEV Tracker (cisakevtracker@mastodon.social)'s status on Thursday, 10-Oct-2024 00:53:11 JST CISA KEV Tracker CISA KEV Tracker

    CVE ID: CVE-2024-23113
    Vendor: Fortinet
    Product: Multiple Products
    Date Added: 2024-10-09
    Vulnerability: Fortinet Multiple Products Format String Vulnerability
    Notes: https://www.fortiguard.com/psirt/FG-IR-24-029 ; https://nvd.nist.gov/vuln/detail/CVE-2024-23113
    CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2024-23113

    In conversation about 6 months ago from mastodon.social permalink

    Attachments


    2. No result found on File_thumbnail lookup.
      NVD - CVE-2024-23113
  6. Embed this notice
    CISA KEV Tracker (cisakevtracker@mastodon.social)'s status on Wednesday, 09-Oct-2024 04:04:33 JST CISA KEV Tracker CISA KEV Tracker

    CVE ID: CVE-2024-43047
    Vendor: Qualcomm
    Product: Multiple Chipsets
    Date Added: 2024-10-08
    Vulnerability: Qualcomm Multiple Chipsets Use-After-Free Vulnerability
    Notes: https://git.codelinaro.org/clo/la/platform/vendor/qcom/opensource/dsp-kernel/-/commit/0e27b6c7d2bd8d0453e4465ac2ca49a8f8c440e2 ; https://nvd.nist.gov/vuln/detail/CVE-2024-43047
    CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2024-43047

    In conversation about 6 months ago from mastodon.social permalink

    Attachments

    1. Domain not in remote thumbnail source whitelist: git.codelinaro.org
      dsp-kernel: Handle UAF scenario in put_args (0e27b6c7) · Commits · CodeLinaro / la / platform / vendor / qcom / opensource / dsp-kernel · GitLab
      Currently, the DSP updates header buffers with unused DMA handle fds. In the put_args section, if any DMA handle FDs are present in the header buffer, the corresponding map is...
    2. No result found on File_thumbnail lookup.
      NVD - CVE-2024-43047
  7. Embed this notice
    CISA KEV Tracker (cisakevtracker@mastodon.social)'s status on Wednesday, 25-Sep-2024 00:04:18 JST CISA KEV Tracker CISA KEV Tracker

    CVE ID: CVE-2024-7593
    Vendor: Ivanti
    Product: Virtual Traffic Manager
    Date Added: 2024-09-24
    Vulnerability: Ivanti Virtual Traffic Manager Authentication Bypass Vulnerability
    Notes: https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Virtual-Traffic-Manager-vTM-CVE-2024-7593 ; https://nvd.nist.gov/vuln/detail/CVE-2024-7593
    CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2024-7593

    In conversation about 6 months ago from mastodon.social permalink

    Attachments

    1. No result found on File_thumbnail lookup.
      Ivanti Community
    2. No result found on File_thumbnail lookup.
      NVD - CVE-2024-7593
  8. Embed this notice
    CISA KEV Tracker (cisakevtracker@mastodon.social)'s status on Thursday, 19-Sep-2024 00:03:48 JST CISA KEV Tracker CISA KEV Tracker

    CVE ID: CVE-2020-14644
    Vendor: Oracle
    Product: WebLogic Server
    Date Added: 2024-09-18
    Vulnerability: Oracle WebLogic Server Remote Code Execution Vulnerability
    Notes: https://www.oracle.com/security-alerts/cpujul2020.html ; https://nvd.nist.gov/vuln/detail/CVE-2020-14644
    CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2020-14644

    In conversation about 7 months ago from mastodon.social permalink

    Attachments

    1. No result found on File_thumbnail lookup.
      Oracle Critical Patch Update Advisory - July 2020
      Oracle Critical Patch Update Advisory - July 2020
    2. No result found on File_thumbnail lookup.
      NVD - CVE-2020-14644
  9. Embed this notice
    CISA KEV Tracker (cisakevtracker@mastodon.social)'s status on Thursday, 22-Aug-2024 00:15:09 JST CISA KEV Tracker CISA KEV Tracker

    CVE ID: CVE-2021-31196
    Vendor: Microsoft
    Product: Exchange Server
    Date Added: 2024-08-21
    Vulnerability: Microsoft Exchange Server Information Disclosure Vulnerability
    Notes: https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2021-31196
    CVE URL: https://nvd.nist.gov/vuln/detail/CVE-2021-31196

    In conversation about 8 months ago from mastodon.social permalink

    Attachments

    1. No result found on File_thumbnail lookup.
      Security Update Guide - Microsoft Security Response Center
    2. No result found on File_thumbnail lookup.
      NVD - CVE-2021-31196

User actions

    CISA KEV Tracker

    CISA KEV Tracker

    🦅Posts new records seen from the CISA.gov Known Exploited Vulnerabilities (KEV) Catalog🦅Run by @cityhallin

    Tags
    • (None)

    Following 0

      Followers 0

        Groups 0

          Statistics

          User ID
          277167
          Member since
          21 Aug 2024
          Notices
          9
          Daily average
          0

          Feeds

          • Atom
          • Help
          • About
          • FAQ
          • TOS
          • Privacy
          • Source
          • Version
          • Contact

          GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

          Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.