CISA Adds Citrix Vulnerabilities To KEV As New Flaws Emerge - Cybernoz - Cybersecurity News

CISA Flags Actively Exploited Citrix and Git Flaws as Exploitation Accelerates

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added three newly exploited bugs in Citrix and Git to its Known Exploited Vulnerabilities (KEV) catalog, mandating federal agencies patch them by mid-September. The move underscores how attackers are increasingly leveraging even mid-range vulnerabilities once reliable proof-of-concept exploits emerge.A Trio of TargetsTwo of the flaws—CVE-2024-8068 and CVE-2024-8069—impact Citri…

CISA Adds Citrix Vulnerabilities To KEV As New Flaws Emerge - Cybernoz - Cybersecurity News

The U.S. Cybersecurity and Information Security Agency (CISA) has added two Citrix vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog just as new Citrix vulnerabilities emerge – one of which is actively being exploited. The vulnerabilities added to the KEV catalog on August 25 are rated medium severity (5.1) and were patched in November 2024. They are: CVE-2024-8069: a Citrix Session Recording Deserialization of Untrusted Data…

CISA Adds Citrix Vulnerabilities To KEV As New Flaws Emerge

The U.S. Cybersecurity and Information Security Agency (CISA) has added two Citrix vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog just as new Citrix vulnerabilities emerge – one of which is actively being exploited. The vulnerabilities added to the KEV catalog on August 25 are rated medium severity (5.1) and were patched in November 2024. They are: CVE-2024-8069: a Citrix Session Recording Deserialization of Untrusted Data…