按 Enter 到主內容區
:::

TWCERT/CC台灣電腦網路危機處理暨協調中心|企業資安通報協處|資安情資分享|漏洞通報|資安聯盟|資安電子報

:::

1/19至1/25 Known Exploited Vulnerabilities Catalog(KEV)週報

發布日期:
字型大小:
  • 發布單位:TWCERT/CC
  • 更新日期:2026-01-29
  • 點閱次數:11
  • 內容說明

CISA於1/19至1/25在Known Exploited Vulnerabilities Catalog(KEV)中發布6個已遭駭客利用之漏洞。

  • 影響平台

Broadcom|VMware vCenter Server

Cisco|Unified Communications Manager

Prettier|eslint-config-prettier

Synacor|Zimbra Collaboration Suite (ZCS)

Versa|Concerto

Vite|Vitejs

  • 處置建議

修補說明請參考以下官方連結:

Broadcom|VMware vCenter Server

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24453

Cisco|Unified Communications Manager

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-voice-rce-mORhqY4b

Prettier|eslint-config-prettier

https://www.npmjs.com/package/eslint-config-prettier?activeTab=versions

https://github.com/prettier/eslint-config-prettier/issues/339#issuecomment-3090304490

Synacor|Zimbra Collaboration Suite (ZCS)

https://wiki.zimbra.com/wiki/Security_Center

Versa|Concerto

https://security-portal.versa-networks.com/emailbulletins/6830f94328defa375486ff2e

Vite|Vitejs

https://github.com/vitejs/vite/commit/59673137c45ac2bcfad1170d954347c1a17ab949

  • CVE編號

CVE-2024-37079

CVE-2025-31125

CVE-2025-34026

CVE-2025-54313

CVE-2025-68645

CVE-2026-20045

相關連結

  1. https://www.cisa.gov/known-exploited-vulnerabilities-catalog
  2. https://nvd.nist.gov/vuln/detail/CVE-2024-37079
  3. https://nvd.nist.gov/vuln/detail/CVE-2025-31125
  4. https://nvd.nist.gov/vuln/detail/CVE-2025-34026
  5. https://nvd.nist.gov/vuln/detail/CVE-2025-54313
  6. https://nvd.nist.gov/vuln/detail/CVE-2025-68645
  7. https://nvd.nist.gov/vuln/detail/CVE-2026-20045
回頁首