Skip to content

Commit 2e2c4e5

Browse files
aboutcode-automationaboutcode-automation
committed
Update KEV: Wed Jan 15 00:11:01 UTC 2025
Signed-off-by: AboutCode Automation <[email protected]>
1 parent c473615 commit 2e2c4e5

File tree

1 file changed

+93
-3
lines changed

1 file changed

+93
-3
lines changed

known_exploited_vulnerabilities.json

Lines changed: 93 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,9 +1,99 @@
11
{
22
"title": "CISA Catalog of Known Exploited Vulnerabilities",
3-
"catalogVersion": "2025.01.08",
4-
"dateReleased": "2025-01-08T23:14:48.1212Z",
5-
"count": 1243,
3+
"catalogVersion": "2025.01.14",
4+
"dateReleased": "2025-01-14T19:09:06.4021Z",
5+
"count": 1249,
66
"vulnerabilities": [
7+
{
8+
"cveID": "CVE-2025-21335",
9+
"vendorProject": "Microsoft",
10+
"product": "Windows",
11+
"vulnerabilityName": "Microsoft Windows Hyper-V NT Kernel Integration VSP Use-After-Free Vulnerability",
12+
"dateAdded": "2025-01-14",
13+
"shortDescription": "Microsoft Windows Hyper-V NT Kernel Integration VSP contains a use-after-free vulnerability that allows a local attacker to gain SYSTEM privileges.",
14+
"requiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
15+
"dueDate": "2025-02-04",
16+
"knownRansomwareCampaignUse": "Unknown",
17+
"notes": "https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2025-21335 ; https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2025-21335",
18+
"cwes": [
19+
"CWE-416"
20+
]
21+
},
22+
{
23+
"cveID": "CVE-2025-21334",
24+
"vendorProject": "Microsoft",
25+
"product": "Windows",
26+
"vulnerabilityName": "Microsoft Windows Hyper-V NT Kernel Integration VSP Use-After-Free Vulnerability",
27+
"dateAdded": "2025-01-14",
28+
"shortDescription": "Microsoft Windows Hyper-V NT Kernel Integration VSP contains a use-after-free vulnerability that allows a local attacker to gain SYSTEM privileges.",
29+
"requiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
30+
"dueDate": "2025-02-04",
31+
"knownRansomwareCampaignUse": "Unknown",
32+
"notes": "https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2025-21334 ; https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2025-21334",
33+
"cwes": [
34+
"CWE-416"
35+
]
36+
},
37+
{
38+
"cveID": "CVE-2025-21333",
39+
"vendorProject": "Microsoft",
40+
"product": "Windows",
41+
"vulnerabilityName": "Microsoft Windows Hyper-V NT Kernel Integration VSP Heap-based Buffer Overflow Vulnerability",
42+
"dateAdded": "2025-01-14",
43+
"shortDescription": "Microsoft Windows Hyper-V NT Kernel Integration VSP contains a heap-based buffer overflow vulnerability that allows a local attacker to gain SYSTEM privileges.",
44+
"requiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
45+
"dueDate": "2025-02-04",
46+
"knownRansomwareCampaignUse": "Unknown",
47+
"notes": "https:\/\/msrc.microsoft.com\/update-guide\/en-US\/vulnerability\/CVE-2025-21333 ; https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2025-21333",
48+
"cwes": [
49+
"CWE-122"
50+
]
51+
},
52+
{
53+
"cveID": "CVE-2024-55591",
54+
"vendorProject": "Fortinet",
55+
"product": "FortiOS",
56+
"vulnerabilityName": "Fortinet FortiOS Authorization Bypass Vulnerability",
57+
"dateAdded": "2025-01-14",
58+
"shortDescription": "Fortinet FortiOS contains an authorization bypass vulnerability that may allow an unauthenticated remote attacker to gain super-admin privileges via crafted requests to Node.js websocket module.",
59+
"requiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
60+
"dueDate": "2025-01-21",
61+
"knownRansomwareCampaignUse": "Unknown",
62+
"notes": "https:\/\/fortiguard.fortinet.com\/psirt\/FG-IR-24-535 ; https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2024-55591",
63+
"cwes": [
64+
"CWE-288"
65+
]
66+
},
67+
{
68+
"cveID": "CVE-2023-48365",
69+
"vendorProject": "Qlik",
70+
"product": "Sense",
71+
"vulnerabilityName": "Qlik Sense HTTP Tunneling Vulnerability",
72+
"dateAdded": "2025-01-13",
73+
"shortDescription": "Qlik Sense contains an HTTP tunneling vulnerability that allows an attacker to escalate privileges and execute HTTP requests on the backend server hosting the software.",
74+
"requiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
75+
"dueDate": "2025-02-03",
76+
"knownRansomwareCampaignUse": "Unknown",
77+
"notes": "https:\/\/community.qlik.com\/t5\/Official-Support-Articles\/Critical-Security-fixes-for-Qlik-Sense-Enterprise-for-Windows\/tac-p\/2120510 ; https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2023-48365",
78+
"cwes": [
79+
"CWE-444"
80+
]
81+
},
82+
{
83+
"cveID": "CVE-2024-12686",
84+
"vendorProject": "BeyondTrust",
85+
"product": "Privileged Remote Access (PRA) and Remote Support (RS)",
86+
"vulnerabilityName": "BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) OS Command Injection Vulnerability",
87+
"dateAdded": "2025-01-13",
88+
"shortDescription": "BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) contain an OS command injection vulnerability that can be exploited by an attacker with existing administrative privileges to upload a malicious file. Successful exploitation of this vulnerability can allow a remote attacker to execute underlying operating system commands within the context of the site user.",
89+
"requiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
90+
"dueDate": "2025-02-03",
91+
"knownRansomwareCampaignUse": "Unknown",
92+
"notes": "https:\/\/www.beyondtrust.com\/trust-center\/security-advisories\/bt24-11 ; https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2024-12686",
93+
"cwes": [
94+
"CWE-78"
95+
]
96+
},
797
{
898
"cveID": "CVE-2025-0282",
999
"vendorProject": "Ivanti",

0 commit comments

Comments
 (0)