6/2至6/8 Known Exploited Vulnerabilities Catalog(KEV)週報
- 發布單位:TWCERT/CC
- 更新日期:2025-06-11
- 點閱次數:410
- 內容說明:
CISA於6/2至6/8在Known Exploited Vulnerabilities Catalog(KEV)中發布9個已遭駭客利用之漏洞。
- 影響平台:
Google|Chromium V8
Qualcomm|Multiple Chipsets
ASUS|Routers
ConnectWise|ScreenConnect
Craft CMS|Craft CMS
ASUS|RT-AX55 Routers
- 處置建議:
修補說明請參考以下官方連結:
Google|Chromium V8
https://chromereleases.googleblog.com/2025/06/stable-channel-update-for-desktop.html
Qualcomm|Multiple Chipsets
https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2025-bulletin.html
ASUS|Routers
https://www.asus.com/us/supportonly/lyra%20mini/helpdesk_bios/
https://www.asus.com/us/supportonly/rog%20rapture%20gt-ac2900/helpdesk_bios/
ConnectWise|ScreenConnect
https://www.connectwise.com/company/trust/security-bulletins/screenconnect-security-patch-2025.4
Craft CMS|Craft CMS
https://github.com/craftcms/cms/pull/17220
https://github.com/craftcms/cms/security/advisories/GHSA-2p6p-9rc9-62j9
ASUS|RT-AX55 Routers
https://www.asus.com/content/asus-product-security-advisory/
- CVE編號:
CVE-2021-32030
CVE-2023-39780
CVE-2024-56145
CVE-2025-3935
CVE-2025-5419
CVE-2025-21479
CVE-2025-21480
CVE-2025-27038
CVE-2025-35939
相關連結
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog
- https://nvd.nist.gov/vuln/detail/CVE-2021-32030
- https://nvd.nist.gov/vuln/detail/CVE-2023-39780
- https://nvd.nist.gov/vuln/detail/CVE-2024-56145
- https://nvd.nist.gov/vuln/detail/CVE-2025-3935
- https://nvd.nist.gov/vuln/detail/CVE-2025-5419
- https://nvd.nist.gov/vuln/detail/CVE-2025-21479
- https://nvd.nist.gov/vuln/detail/CVE-2025-21480
- https://nvd.nist.gov/vuln/detail/CVE-2025-27038
- https://nvd.nist.gov/vuln/detail/CVE-2025-35939