Cybersecurity Alerts

Actively Exploited Vulnerabilities

The vulnerabilities listed below are sourced from the CISA Known Exploited Vulnerabilities catalog and represent security flaws that are actively being exploited in the wild. This list is updated daily. If you are unsure whether your systems are affected, contact us and we will help you assess your exposure.

CVE-2019-1322Active Ransomware Campaign
Microsoft | Windows
Microsoft Windows Privilege Escalation Vulnerability
A privilege escalation vulnerability exists when Windows improperly handles authentication requests. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
Added 2022-03-15
Remediation Deadline 2022-04-05
CVE-2019-1315Active Ransomware Campaign
Microsoft | Windows
Microsoft Windows Error Reporting Manager Privilege Escalation Vulnerability
A privilege escalation vulnerability exists when Windows Error Reporting manager improperly handles hard links. An attacker who successfully exploited this vulnerability could overwrite a targeted file leading to an elevated status.
Added 2022-03-15
Remediation Deadline 2022-04-05
CVE-2019-1253Active Ransomware Campaign
Microsoft | Windows
Microsoft Windows AppX Deployment Server Privilege Escalation Vulnerability
A privilege escalation vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.
Added 2022-03-15
Remediation Deadline 2022-04-05
CVE-2019-1132
Microsoft | Win32k
Microsoft Win32k Privilege Escalation Vulnerability
A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory.
Added 2022-03-15
Remediation Deadline 2022-04-05
CVE-2019-1129Active Ransomware Campaign
Microsoft | Windows
Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability
A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
Added 2022-03-15
Remediation Deadline 2022-04-05
CVE-2019-1069Active Ransomware Campaign
Microsoft | Task Scheduler
Microsoft Task Scheduler Privilege Escalation Vulnerability
A privilege escalation vulnerability exists in the way the Task Scheduler Service validates certain file operations.
Added 2022-03-15
Remediation Deadline 2022-04-05
CVE-2019-1064Active Ransomware Campaign
Microsoft | Windows
Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability
A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
Added 2022-03-15
Remediation Deadline 2022-04-05
CVE-2019-0841Active Ransomware Campaign
Microsoft | Windows
Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability
A privilege escalation vulnerability exists when Windows AppXSVC improperly handles hard links. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
Added 2022-03-15
Remediation Deadline 2022-04-05
CVE-2019-0543Active Ransomware Campaign
Microsoft | Windows
Microsoft Windows Privilege Escalation Vulnerability
A privilege escalation vulnerability exists when Windows improperly handles authentication requests. An attacker who successfully exploited this vulnerability could run processes in an elevated context.
Added 2022-03-15
Remediation Deadline 2022-04-05
CVE-2018-8120Active Ransomware Campaign
Microsoft | Win32k
Microsoft Win32k Privilege Escalation Vulnerability
A privilege escalation vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory.
Added 2022-03-15
Remediation Deadline 2022-04-05
CVE-2017-0101Active Ransomware Campaign
Microsoft | Windows
Microsoft Windows Transaction Manager Privilege Escalation Vulnerability
A privilege escalation vulnerability exists when the Windows Transaction Manager improperly handles objects in memory.
Added 2022-03-15
Remediation Deadline 2022-04-05
CVE-2016-3309Active Ransomware Campaign
Microsoft | Windows
Microsoft Windows Kernel Privilege Escalation Vulnerability
A privilege escalation vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.
Added 2022-03-15
Remediation Deadline 2022-04-05
CVE-2015-2546Active Ransomware Campaign
Microsoft | Win32k
Microsoft Win32k Memory Corruption Vulnerability
The kernel-mode driver in Microsoft Windows OS and Server allows local users to gain privileges via a crafted application.
Added 2022-03-15
Remediation Deadline 2022-04-05
CVE-2022-26486
Mozilla | Firefox
Mozilla Firefox Use-After-Free Vulnerability
Mozilla Firefox contains a use-after-free vulnerability in WebGPU IPC Framework which can be exploited to perform arbitrary code execution.
Added 2022-03-07
Remediation Deadline 2022-03-21
CVE-2022-26485
Mozilla | Firefox
Mozilla Firefox Use-After-Free Vulnerability
Mozilla Firefox contains a use-after-free vulnerability in XSLT parameter processing which can be exploited to perform arbitrary code execution.
Added 2022-03-07
Remediation Deadline 2022-03-21
CVE-2021-21973
VMware | vCenter Server and Cloud Foundation
VMware vCenter Server and Cloud Foundation Server Side Request Forgery (SSRF) Vulnerability
VMware vCenter Server and Cloud Foundation Server contain a SSRF vulnerability due to improper validation of URLs in a vCenter Server plugin. This allows for information disclosure.
Added 2022-03-07
Remediation Deadline 2022-03-21
CVE-2020-8218
Pulse Secure | Pulse Connect Secure
Pulse Connect Secure Code Injection Vulnerability
A code injection vulnerability exists in Pulse Connect Secure that allows an attacker to crafted a URI to perform an arbitrary code execution via the admin web interface.
Added 2022-03-07
Remediation Deadline 2022-09-07
CVE-2019-11581
Atlassian | Jira Server and Data Center
Atlassian Jira Server and Data Center Server-Side Template Injection Vulnerability
Atlassian Jira Server and Data Center contain a server-side template injection vulnerability which can allow for remote code execution.
Added 2022-03-07
Remediation Deadline 2022-09-07
CVE-2017-6077
NETGEAR | Wireless Router DGN2200
NETGEAR DGN2200 Remote Code Execution Vulnerability
NETGEAR DGN2200 wireless routers contain a vulnerability that allows for remote code execution.
Added 2022-03-07
Remediation Deadline 2022-09-07
CVE-2016-6277
NETGEAR | Multiple Routers
NETGEAR Multiple Routers Remote Code Execution Vulnerability
NETGEAR confirmed multiple routers allow unauthenticated web pages to pass form input directly to the command-line interface, permitting remote code execution.
Added 2022-03-07
Remediation Deadline 2022-09-07
CVE-2013-0631
Adobe | ColdFusion
Adobe ColdFusion Information Disclosure Vulnerability
Adobe Coldfusion contains an unspecified vulnerability, which could result in information disclosure from a compromised server.
Added 2022-03-07
Remediation Deadline 2022-09-07
CVE-2013-0629
Adobe | ColdFusion
Adobe ColdFusion Directory Traversal Vulnerability
Adobe Coldfusion contains a directory traversal vulnerability, which could permit an unauthorized user access to restricted directories.
Added 2022-03-07
Remediation Deadline 2022-09-07
CVE-2013-0625
Adobe | ColdFusion
Adobe ColdFusion Authentication Bypass Vulnerability
Adobe Coldfusion contains an authentication bypass vulnerability, which could result in an unauthorized user gaining administrative access.
Added 2022-03-07
Remediation Deadline 2022-09-07
CVE-2009-3960Active Ransomware Campaign
Adobe | BlazeDS
Adobe BlazeDS Information Disclosure Vulnerability
Adobe BlazeDS, which is utilized in LifeCycle and Coldfusion, contains a vulnerability that allows for information disclosure.
Added 2022-03-07
Remediation Deadline 2022-09-07
CVE-2022-20708
Cisco | Small Business RV160, RV260, RV340, and RV345 Series Routers
Cisco Small Business RV Series Routers Stack-based Buffer Overflow Vulnerability
A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).
Added 2022-03-03
Remediation Deadline 2022-03-17
CVE-2022-20703
Cisco | Small Business RV160, RV260, RV340, and RV345 Series Routers
Cisco Small Business RV Series Routers Stack-based Buffer Overflow Vulnerability
A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).
Added 2022-03-03
Remediation Deadline 2022-03-17
CVE-2022-20701
Cisco | Small Business RV160, RV260, RV340, and RV345 Series Routers
Cisco Small Business RV Series Routers Stack-based Buffer Overflow Vulnerability
A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).
Added 2022-03-03
Remediation Deadline 2022-03-17
CVE-2022-20700
Cisco | Small Business RV160, RV260, RV340, and RV345 Series Routers
Cisco Small Business RV Series Routers Stack-based Buffer Overflow Vulnerability
A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).
Added 2022-03-03
Remediation Deadline 2022-03-17
CVE-2022-20699
Cisco | Small Business RV160, RV260, RV340, and RV345 Series Routers
Cisco Small Business RV Series Routers Stack-based Buffer Overflow Vulnerability
A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).
Added 2022-03-03
Remediation Deadline 2022-03-17
CVE-2021-41379Active Ransomware Campaign
Microsoft | Windows
Microsoft Windows Installer Privilege Escalation Vulnerability
Microsoft Windows Installer contains an unspecified vulnerability that allows for privilege escalation.
Added 2022-03-03
Remediation Deadline 2022-03-17