CISA Adds Five New Vulnerabilities to KEV Catalog Amid Active Exploits

Article Highlights
Off On

A significant move to bolster cybersecurity has been made by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) following the addition of five new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. This inclusion underscores an urgent need for immediate action as these vulnerabilities are being actively exploited. The targeted systems include Advantive VeraCore and Ivanti Endpoint Manager (EPM), both critical infrastructure components in various organizations. U.S. authorities are increasingly vigilant about cyber threats, evidenced by the prioritization of these specific vulnerabilities.

Notable Vulnerabilities in Advantive VeraCore

The vulnerabilities newly added to the KEV catalog affecting Advantive VeraCore are CVE-2024-57968, an unrestricted file upload flaw, and CVE-2025-25181, an SQL injection issue. These vulnerabilities have been exploited by the XE Group, a Vietnamese threat actor known for installing reverse and web shells that facilitate persistent remote access to compromised systems. The XE Group’s consistent targeting of these vulnerabilities highlights the urgent need for organizations to secure their systems against such breaches, which can have far-reaching consequences on operational integrity.

Despite the critical nature of these vulnerabilities, the public awareness and documentation around their exploitation have remained relatively low. This gap poses a considerable risk as the lack of detailed reporting can delay the response efforts by other organizations facing similar threats. Ensuring that patches are promptly applied and systems are regularly audited for vulnerabilities is a fundamental step toward mitigating these risks. Importantly, this underscores the broader need for enhanced threat intelligence sharing and active defense mechanisms across the industry to keep pace with the advancing tactics of cyber adversaries.

Ivanti EPM Vulnerabilities and Response

Further adding to the KEV catalog are vulnerabilities within the Ivanti Endpoint Manager (EPM), specifically CVE-2024-13159, CVE-2024-13160, and CVE-2024-13161. These absolute path traversal vulnerabilities allow unauthorized attackers to manipulate file paths, leading to potential compromises of critical server resources. Although no public reports currently detail the exploitation of these Ivanti EPM vulnerabilities, they remain a pressing concern. Cybersecurity firm Horizon3.ai has previously released a proof-of-concept exploit, labeling these as “credential coercion” bugs that could enable unauthenticated attackers to compromise servers effectively.

In response to this, Federal Civilian Executive Branch (FCEB) agencies are required to patch these vulnerabilities by March 31, 2025. This mandate underscores the level of threat posed by these weaknesses and the importance of proactive measures in cybersecurity. The coordination between CISA, cybersecurity firms, and governmental agencies exemplifies a comprehensive approach to addressing these emerging threats. As attackers become more sophisticated, the need for rapid response and collaboration in mitigating these risks cannot be overstated.

A Broader Look at Global Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has taken a significant step to enhance cybersecurity by adding five new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. This addition emphasizes the crucial need for prompt action, as these vulnerabilities are currently being actively exploited. The targeted systems include Advantive VeraCore and Ivanti Endpoint Manager (EPM), which are essential infrastructure components for numerous organizations. U.S. authorities are demonstrating increased vigilance regarding cyber threats, shown by their specific prioritization of these vulnerabilities. CISA’s efforts are a reminder of the ongoing battle against cyberattacks, highlighting the importance of staying ahead of potential threats. The inclusion of these vulnerabilities in the KEV catalog aims to ensure that organizations take immediate steps to mitigate the risks and protect their critical systems. As cyber threats evolve, the proactive measures by CISA are crucial in safeguarding the nation’s infrastructure from potential breaches and attacks. Hence, this action is a key move in fortifying the defense against cyber adversaries.

Explore more

BSP Boosts Efficiency with AI-Powered Reconciliation System

In an era where precision and efficiency are vital in the banking sector, BSP has taken a significant stride by partnering with SmartStream Technologies to deploy an AI-powered reconciliation automation system. This strategic implementation serves as a cornerstone in BSP’s digital transformation journey, targeting optimized operational workflows, reducing human errors, and fostering overall customer satisfaction. The AI-driven system primarily automates

Is Gen Z Leading AI Adoption in Today’s Workplace?

As artificial intelligence continues to redefine modern workspaces, understanding its adoption across generations becomes increasingly crucial. A recent survey sheds light on how Generation Z employees are reshaping perceptions and practices related to AI tools in the workplace. Evidently, a significant portion of Gen Z feels that leaders undervalue AI’s transformative potential. Throughout varied work environments, there’s a belief that

Can AI Trust Pledge Shape Future of Ethical Innovation?

Is artificial intelligence advancing faster than society’s ability to regulate it? Amid rapid technological evolution, AI use around the globe has surged by over 60% within recent months alone, pushing crucial ethical boundaries. But can an AI Trustworthy Pledge foster ethical decisions that align with technology’s pace? Why This Pledge Matters Unchecked AI development presents substantial challenges, with risks to

Data Integration Technology – Review

In a rapidly progressing technological landscape where organizations handle ever-increasing data volumes, integrating this data effectively becomes crucial. Enterprises strive for a unified and efficient data ecosystem to facilitate smoother operations and informed decision-making. This review focuses on the technology driving data integration across businesses, exploring its key features, trends, applications, and future outlook. Overview of Data Integration Technology Data

Navigating SEO Changes in the Age of Large Language Models

As the digital landscape continues to evolve, the intersection of Large Language Models (LLMs) and Search Engine Optimization (SEO) is becoming increasingly significant. Businesses and SEO professionals face new challenges as LLMs begin to redefine how online content is managed and discovered. These models, which leverage vast amounts of data to generate context-rich responses, are transforming traditional search engines. They