Current Security Issues, Vulnerabilities, and Exploits
Current CISA Security Alerts
- Repository for Software Attestation and Artifacts Now Liveon March 18, 2024
Software producers who partner with the federal government can now upload their Secure Software Development Attestation Forms to CISA's Repository for Software Attestation and Artifacts. Software producers that provide the government software can fill out the form to attest to implementation of specific security practices. CISA and the Office of Management and Budget (OMB) released the form on March 11, 2024, following extensive stakeholder and industry engagement. See the recent blog post from Federal CISO and Deputy National Cyber Director Chris DeRusha and CISA Executive Assistant Director for Cybersecurity Eric Goldstein for additional information.
- CISA Releases Fifteen Industrial Control Systems Advisorieson March 14, 2024
CISA released fifteen Industrial Control Systems (ICS) advisories on March 14, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-074-01 Siemens SENTRON 7KM PAC3x20 ICSA-24-074-02 Siemens Solid Edge ICSA-24-074-03 Siemens SINEMA Remote Connect Server ICSA-24-074-04 Siemens SINEMA Remote Connect Client ICSA-24-074-05 Siemens RUGGEDCOM APE1808 ICSA-24-074-06 Siemens SENTRON ICSA-24-074-07 Siemens SIMATIC ICSA-24-074-08 Siemens SCALANCE XB-200/XC-200/XP-200/XF-200BA/XR-300WG Family ICSA-24-074-09 Siemens Sinteso EN Cerberus PRO EN Fire Protection Systems ICSA-24-074-10 Siemens Siveillance Control ICSA-24-074-11 Siemens RUGGEDCOM APE1808 with Fortigate NGFW Devices ICSA-24-074-12 Delta Electronics DIAEnergie ICSA-24-074-13 Softing edgeConnector ICSA-24-074-14 Mitsubishi Electric MELSEC-Q/L Series ICSA-23-143-03 Mitsubishi Electric MELSEC Series CPU module (Update C) CISA encourages users and administrators to review the newly released ICS advisories for technical details and mitigations.
- Cisco Releases Security Updates for IOS XR Softwareon March 14, 2024
Cisco released security updates to address vulnerabilities in Cisco IOS XR software. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected device. CISA encourages users and administrators to review the following advisories and apply the necessary updates: Cisco IOS XR Software for ASR 9000 Series Aggregation Services Routers PPPoE Denial of Service Vulnerability Cisco IOS XR Software SSH Privilege Escalation Vulnerability Cisco IOS XR Software Layer 2 Services Denial of Service Vulnerability
- Microsoft Releases Security Updates for Multiple Productson March 12, 2024
Microsoft has released security updates to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following and apply the necessary updates: Microsoft Security Update Guide for March
- CISA Publishes SCuBA Hybrid Identity Solutions Guidanceon March 12, 2024
CISA has published Secure Cloud Business Applications (SCuBA) Hybrid Identity Solutions Guidance (HISG) to help users better understand identity management capabilities and securely integrate their traditional on-premises enterprise networks with cloud-based solutions. This initial publication reflects feedback gathered during its 2023 draft public comment period. CISA encourages users to review and implement this solutions guidance as appropriate for their individual organizations. HISG is the latest resource released by CISA’s SCuBA project. In accordance with Executive Order 14028, CISA’s SCuBA project aims to develop consistent, effective, modern, and manageable security that will help secure organizations’ information assets stored within cloud environments. Visit CISA’s SCuBA project page for more information.
- Fortinet Releases Security Updates for Multiple Productson March 12, 2024
Fortinet released security updates to address vulnerabilities in multiple Fortinet products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following advisories and apply necessary updates: FR-IR-23-390: FortiClientEMS - CSV injection in log download feature FR-IR-23-328: FortiOS, FortiProxy - Out-of-bounds Write in captive portal FR-IR-24-013: FortiOS, FortiProxy - Authorization bypass in SSLVPN bookmarks FR-IR-23-103: FortiWLM MEA for FortiManager - Improper access control in backup and restore features FR-IR-24-007: Pervasive SQL injection in DAS component
- Adobe Releases Security Updates for Multiple Productson March 12, 2024
Adobe released security updates to address multiple vulnerabilities in Adobe software. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Adobe Security Bulletins and apply the necessary updates: Adobe Experience Manager Adobe Premiere Pro Adobe ColdFusion Adobe Bridge Adobe Lightroom Adobe Animate