cisa – Seite 3 – Wolfinisoftware.de

security

CISA orders feds to patch actively exploited Ivanti flaw by Sunday

12.06.2026

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies to patch an actively exploited Ivanti Sentry flaw within three days, as mandated by the newly issued Binding Operational Directive (BOD) 26-04. […]

Mehr lesen →

security

CISA Directs Federal Agencies to Prioritize Security Patches Based on Risk

11.06.2026

The new BOD 26-04 requires agencies to review and update vulnerability management policies with a focus on KEV catalog entries. The post CISA Directs Federal Agencies to Prioritize Security Patches Based on Risk appeared first on SecurityWeek.

Mehr lesen →

security

CISA tells govt agencies to patch critical exploited flaws in 3 days

11.06.2026

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced a new Binding Operational Directive, 26-04, that prioritizes security updates for Federal Civilian Executive Branch (FCEB) agencies. […]

Mehr lesen →

soc

CISA Adds One Known Exploited Vulnerability to Catalog

11.06.2026

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-10520 Ivanti Sentry OS Command Injection Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise. Binding Operational Directive (BOD) 26-04: Prioritizing Security Updates […]

Mehr lesen →

Unterhaltung

KI-Agenten: OpenAI kann künftig Visa-Karten benutzen

11.06.2026

Dank Visa können KI-Agenten von OpenAI künftig im Auftrag von Nutzern einkaufen. Missbrauch soll durch verschiedene Regeln verhindert werden. (Visa, Onlineshop)

Mehr lesen →

security

CISA Rewrites Federal Patching Requirements for AI Threat Era

10.06.2026

The new directive gives federal agencies three days to fix the most dangerous flaws, while less severe issues can be deferred.

Mehr lesen →

soc

CISA KEV Highlights LiteLLM RCE (CVE-2026-42271) & Check Point VPN Auth Bypass (CVE-2026-50751)

09.06.2026

CISA KEV Highlights LiteLLM RCE (CVE-2026-42271) & Check Point VPN Auth Bypass (CVE-2026-50751) CISA added two vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog on June 8, 2026: CVE-2026-42271 in BerriAI LiteLLM and CVE-2026-50751 in Check Point Security Gateway. Both issues affect high-value parts of modern enterprise environments. LiteLLM often sits between users, applications, and […]

Mehr lesen →

soc

CISA Adds Three Known Exploited Vulnerabilities to Catalog

09.06.2026

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-7473 Arista Extensible Operating System Incomplete Comparison with Missing Factors Vulnerability CVE-2026-11645 Google Chromium V8 Out-of-Bounds Read and Write Vulnerability CVE-2026-20245 Cisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnerability These types of vulnerabilities […]

Mehr lesen →

security

Langflow und Apex One: Aktive Exploits, neu im KEV-Katalog

09.06.2026

Die US-Behörde CISA nimmt zwei aktiv ausgenutzte Schwachstellen in ihren KEV-Katalog auf. Im Visier stehen die KI-Workflow-Plattform Langflow und der On-Premises-Server von Trend Micro Apex One. Beide Lücken erlauben das Einschleusen von Schadcode, eine davon sogar ohne direkte Anmeldung des Angreifers.

Mehr lesen →

soc

CISA Adds Two Known Exploited Vulnerabilities to Catalog

08.06.2026

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-42271 BerriAI LiteLLM Command Injection Vulnerability CVE-2026-50751 Check Point Security Gateway Improper Authentication Vulnerability These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risks to the federal enterprise. Binding […]

Mehr lesen →

Tag: cisa