按 Enter 到主內容區
:::

TWCERT/CC台灣電腦網路危機處理暨協調中心|企業資安通報協處|資安情資分享|漏洞通報|資安聯盟|資安電子報

:::

3/17至3/23 Known Exploited Vulnerabilities Catalog(KEV)週報

發布日期:
字型大小:
  • 發布單位:TWCERT/CC
  • 更新日期:2025-03-27
  • 點閱次數:400
  • 內容說明:

CISA於3/17至3/23在Known Exploited Vulnerabilities Catalog(KEV)中發布5個已遭駭客利用之漏洞。

  • 影響平台:

SAP|NetWeaver

NAKIVO|Backup and Replication

Edimax|IC-7100 IP Camera

tj-actions|changed-files GitHub Action

Fortinet|FortiOS and FortiProxy

  • 處置建議:

修補說明請參考以下官方連結:

SAP|NetWeaver

https://me.sap.com/notes/3476549

(必須登入帳號才能取得更新)

NAKIVO|Backup and Replication

https://helpcenter.nakivo.com/Release-Notes/Content/Release-Notes.htm

Edimax|IC-7100 IP Camera

https://www.edimax.com/edimax/post/post/data/edimax/global/press_releases/4801/

tj-actions|changed-files GitHub Action

https://github.com/tj-actions/changed-files/blob/45fb12d7a8bedb4da42342e52fe054c6c2c3fd73/README.md?plain=1#L20-L28

Fortinet|FortiOS and FortiProxy

https://fortiguard.fortinet.com/psirt/FG-IR-24-535

  • CVE編號:

CVE-2017-12637

CVE-2024-48248

CVE-2025-1316

CVE-2025-24472

CVE-2025-30066

相關連結

  1. https://www.cisa.gov/known-exploited-vulnerabilities-catalog
  2. https://nvd.nist.gov/vuln/detail/CVE-2017-12637
  3. https://nvd.nist.gov/vuln/detail/CVE-2024-48248
  4. https://nvd.nist.gov/vuln/detail/CVE-2025-1316
  5. https://nvd.nist.gov/vuln/detail/CVE-2025-24472
  6. https://nvd.nist.gov/vuln/detail/CVE-2025-30066
回頁首