CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA Current Activity·2. Juni 2026, 12:00

Originalartikel lesen bei CISA Current Activity

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2022-0492 Linux Kernel Improper Authentication Vulnerability CVE-2025-48595 Android Framework Integer Overflow Vulnerability These types of vulnerabilities are...

MITRE ATT&CK Kill Chain (1 Techniken)

Resource Development

T1588.006

Vulnerabilities

Vollständigen Artikel lesen bei CISA Current Activity

9 Quellen berichten

Primärquellen

CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Current Activity · vor 9 Tagen
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Current Activity · vor 7 Tagen
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Current Activity · vor 4 Tagen
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Current Activity · vor 2 Tagen

Weitere Quellen

PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Under Active Exploitation
The Hacker News · vor 6 Tagen
Oracle WebLogic CVE-2024-21182 Added to KEV Catalog After Active Exploitation
The Hacker News · vor 3 Tagen
Google June 2026 Android Update Patches 124 Flaws, One Actively Exploited
The Hacker News · vor 3 Tagen
CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog
The Hacker News · vor 1 Tag

Erwähnte CVEs (2)

CVE-2022-0492HIGH(7.8)

KEVEPSS 29%

A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.

Details NVD

CVE-2025-48595

Nicht in lokaler DB — siehe NVD

NVD

MITRE ATT&CK Kill Chain (1 Techniken)

Verwandte Artikel