US EditionCISA Adds Five Known Exploited Vulnerabilities to Catalog
This story is only covered by news sources that have yet to be evaluated by the independent media monitoring agencies we use to assess the quality and reliability of news outlets on our platform. Learn more here.9 Articles
9 Articles
CISA urges immediate patching of exploited Windows SMB client vulnerability
The U.S. Cybersecurity and Infrastructure Agency has issued a warning relating to an actively targeted Microsoft Windows vulnerability that can be found in unpatched versions of Windows 10, Windows 11 and Windows Server. Tracked as CVE-2025-33073, the vulnerability affects the Windows Server Message Block client, a core component used for file and printer sharing and […] The post CISA urges immediate patching of exploited Windows SMB client vuln…
CISA has added five critical vulnerabilities to its catalog of known exploitable vulnerabilities, affecting Oracle, Microsoft, Apple, and Kentico products. Patches must be applied before November 10, 2025, to mitigate the risk.
CISA Adds Five Actively Exploited Vulnerabilities To KEV Catalog
Overview The Cybersecurity and Infrastructure Security Agency (CISA) has added five new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, impacting key enterprise and consumer products from Oracle, Microsoft, Apple, and Kentico. These vulnerabilities — ranging from authentication bypass to remote code execution — are confirmed to be actively exploited and/or present a heightened risk of exploitation. CISA has directed all f…
CISA Warns Of Oracle E-Business Suite SSRF Vulnerability Actively Exploited In Attacks - Cybernoz - Cybersecurity News
The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Oracle E-Business Suite vulnerability to its Known Exploited Vulnerabilities catalog after detecting active exploitation in the wild. The security flaw, tracked as CVE-2025-61884, poses significant risks to organizations running the widely-deployed enterprise resource planning software. CVE-2025-61884 is a server-side request forgery vulnerability affecting the Runt…
CISA Warns of Oracle E-Business Suite SSRF Vulnerability Actively Exploited in Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical Oracle E-Business Suite vulnerability to its Known Exploited Vulnerabilities catalog after detecting active exploitation in the wild. The security flaw, tracked as CVE-2025-61884, poses significant risks to organizations running the widely-deployed enterprise resource planning software. Critical SSRF Flaw Requires Immediate Action CVE-2025-61884 is a […] The post CI…
CISA Adds Microsoft, Oracle Vulnerabilities To KEV Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added five CVEs to its Known Exploited Vulnerabilities (KEV) catalog today, including Microsoft, Apple and Oracle vulnerabilities. The vulnerabilities flagged by CISA include: CVE-2022-48503, an 8.8-severity vulnerability in multiple Apple products that could lead to arbitrary code execution when processing web content. The issue was addressed with improved bounds checks. CVE-2025…
Coverage Details
Bias Distribution
- There is no tracked Bias information for the sources covering this story.
Factuality
To view factuality data please Upgrade to Premium
