CISA Adds 3 Flaws to KEV Catalog, Impacting AMI MegaRAC, D-Link, Fortinet

AMI MegaRAC flaw is under attack, CISA warns, so patch it — if you can

A critical authentication bypass by spoofing vulnerability in AMI MegaRAC SPx server management firmware is now being actively exploited by attackers, creating urgent pressure for enterprises still waiting for complete vendor patches across their infrastructure. The US Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2024-54085 to its Known Exploited Vulnerabilities catalog on June 25, signaling a dangerous escalation from theor…

U.S. CISA Adds AMI MegaRAC SPx, D-Link DIR-859 Routers, And Fortinet FortiOS Flaws To Its Known Exploited Vulnerabilities Catalog - Cybernoz - Cybersecurity News

U.S. CISA adds AMI MegaRAC SPx, D-Link DIR-859 routers, and Fortinet FortiOS flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini June 26, 2025 U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds AMI MegaRAC SPx, D-Link DIR-859 routers, and Fortinet FortiOS flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added AMI MegaRAC SPx, …

CISA Issues Alert on Active Exploitation of D-Link Path Traversal Flaw

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert following evidence of active exploitation of a critical vulnerability (CVE-2024-0769) in legacy D-Link DIR-859 WiFi routers. The flaw, which enables attackers to gain unauthorized access and potentially full control over affected devices, has now been added to CISA’s Known Exploited Vulnerabilities (KEV) […] The post CISA Issues Alert on Active Exploitati…

CISA Adds 3 Flaws to KEV Catalog, Impacting AMI MegaRAC, D-Link, Fortinet

The US cybersecurity agency CISA has added three security vulnerabilities to its catalog of known exploited vulnerabilities, involving AMI MegaRAC, D-Link DIR-859 routers and FortiOS systems, with scores of 10.0, 5.3 and 4.2 respectively.