按 Enter 到主內容區
:::

TWCERT/CC台灣電腦網路危機處理暨協調中心|企業資安通報協處|資安情資分享|漏洞通報|資安聯盟|資安電子報

:::

6/9至6/15 Known Exploited Vulnerabilities Catalog(KEV)週報

發布日期:
字型大小:
  • 發布單位:TWCERT/CC
  • 更新日期:2025-06-19
  • 點閱次數:285
  • 內容說明:

CISA於6/9至6/15在Known Exploited Vulnerabilities Catalog(KEV)中發布4個已遭駭客利用之漏洞。

  • 影響平台:

Web Distributed Authoring and Versioning|Web Distributed Authoring and Versioning (WebDAV)

Wazuh|Wazuh Server

Roundcube|Webmail

Erlang|Erlang/OTP

  • 處置建議:

修補說明請參考以下官方連結:

Web Distributed Authoring and Versioning|Web Distributed Authoring and Versioning (WebDAV)

https:/msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-33053

Wazuh|Wazuh Server

https://github.com/wazuh/wazuh/security/advisories/GHSA-hcrc-79hj-m3qh

Roundcube|Webmail

https://roundcube.net/news/2024/08/04/security-updates-1.6.8-and-1.5.8

Erlang|Erlang/OTP

https://github.com/erlang/otp/security/advisories/GHSA-37cp-fgq5-7wc2

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-erlang-otp-ssh-xyZZy

  • CVE編號:

CVE-2024-42009

CVE-2025-24016

CVE-2025-32433

CVE-2025-33053

相關連結

  1. https://www.cisa.gov/known-exploited-vulnerabilities-catalog
  2. https://nvd.nist.gov/vuln/detail/CVE-2024-42009
  3. https://nvd.nist.gov/vuln/detail/CVE-2025-24016
  4. https://nvd.nist.gov/vuln/detail/CVE-2025-32433
  5. https://nvd.nist.gov/vuln/detail/CVE-2025-33053
回頁首