CISA Warns of Actively Exploited Git Code Execution Flaw

CISA warns of actively exploited Git code execution flaw

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) is warning of hackers exploiting an arbitrary code execution flaw in the Git distributed version control system.

CISA Adds Three Exploited Vulnerabilities to KEV Catalog Affecting Citrix and Git

美国网络安全机构新增三个高危漏洞至目录，涉及Citrix Session Recording权限管理和反序列化问题（CVSS 5.1），以及Git配置文件处理不当导致代码执行（CVSS 8.1）。相关补丁已发布，需在指定日期前完成修复以应对威胁。

CISA Issues Alert on Citrix Flaws Actively Exploited by Hackers

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent security alert after adding three critical vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog on August 25, 2025. The alert highlights active exploitation of two serious Citrix Session Recording flaws and one Git vulnerability, prompting immediate action from federal agencies and private organizations. Critical […] The post CISA Issues Alert on Cit…

CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA Adds Three Known Exploited Vulnerabilities to Catalog chayes Aug 25, 2025 Release DateAugust 25, 2025 DescriptionCISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.CVE-2024-8069 Citrix Session Recording Deserialization of Untrusted Data VulnerabilityCVE-2024-8068 Citrix Session Recording Improper Privilege Management VulnerabilityCVE-2025-48384 Git Link F…