按 Enter 到中央內容區塊
:::

TWCERT/CC台灣電腦網路危機處理暨協調中心|企業資安通報協處|資安情資分享|漏洞通報|資安聯盟|資安電子報

:::

4/20至4/26 Known Exploited Vulnerabilities Catalog(KEV)週報

發布日期:
字型大小:
  • 發布單位:TWCERT/CC
  • 更新日期:2026-05-06
  • 點閱次數:23
  • 內容說明

CISA於4/20至4/26在Known Exploited Vulnerabilities Catalog(KEV)中發布14個已遭駭客利用之漏洞。

  • 影響平台

Cisco|Catalyst SD-WAN Manger

D-Link|DIR-823X

JetBrains|TeamCity

Kentico|Kentico Xperience

Marimo|Marimo

Microsoft|Defender

PaperCut|NG/MF

Quest|KACE Systems Management Appliance(SMA)

Samsung|MagicINFO 9 Server

SimpleHelp|SimpleHelp

Synacor|Zimbra Collaboration Suite(ZCS)

  • 處置建議

修補說明請參考以下官方連結:

Cisco|Catalyst SD-WAN Manger

https://www.cisa.gov/news-events/directives/ed-26-03-mitigate-vulnerabilities-cisco-sd-wan-systems

https://www.cisa.gov/news-events/directives/supplemental-direction-ed-26-03-hunt-and-hardening-guidance-cisco-sd-wan-systems

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-authbp-qwCX8D4v

D-Link|DIR-823X

https://supportannouncement.us.dlink.com/security/publication.aspx?name=SAP10469

JetBrains|TeamCity

https://www.jetbrains.com/privacy-security/issues-fixed/

https://blog.jetbrains.com/teamcity/2024/03/additional-critical-security-issues-affecting-teamcity-on-premises-cve-2024-27198-and-cve-2024-27199-update-to-2023-11-4-now/

Kentico|Kentico Xperience

https://devnet.kentico.com/download/hotfixes

Marimo|Marimo

https://github.com/marimo-team/marimo/security/advisories/GHSA-2679-6mx9-h9xc

Microsoft|Defender

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33825

PaperCut|NG/MF

https://www.papercut.com/kb/Main/PO-1216-and-PO-1219

Quest|KACE Systems Management Appliance(SMA)

https://support.quest.com/kb/4379499/quest-response-to-kace-sma-vulnerabilities-cve-2025-32975-cve-2025-32976-cve-2025-32977-cve-2025-32978

Samsung|MagicINFO 9 Server

https://security.samsungtv.com/securityUpdates

SimpleHelp|SimpleHelp

https://simple-help.com/kb---security-vulnerabilities-01-2025#security-vulnerabilities-in-simplehelp-5-5-7-and-earlier

Synacor|Zimbra Collaboration Suite(ZCS)

https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories

  • CVE編號

CVE-2023-27351

CVE-2024-7399

CVE-2024-27199

CVE-2024-57726

CVE-2024-57728

CVE-2025-2749

CVE-2025-29635

CVE-2025-32975

CVE-2025-48700

CVE-2026-20122

CVE-2026-20128

CVE-2026-20133

CVE-2026-33825

CVE-2026-39987

相關連結

  1. https://www.cisa.gov/known-exploited-vulnerabilities-catalog
  2. https://nvd.nist.gov/vuln/detail/CVE-2023-27351
  3. https://nvd.nist.gov/vuln/detail/CVE-2024-7399
  4. https://nvd.nist.gov/vuln/detail/CVE-2024-27199
  5. https://nvd.nist.gov/vuln/detail/CVE-2024-57726
  6. https://nvd.nist.gov/vuln/detail/CVE-2024-57728
  7. https://nvd.nist.gov/vuln/detail/CVE-2025-2749
  8. https://nvd.nist.gov/vuln/detail/CVE-2025-29635
  9. https://nvd.nist.gov/vuln/detail/CVE-2025-32975
  10. https://nvd.nist.gov/vuln/detail/CVE-2025-48700
  11. https://nvd.nist.gov/vuln/detail/CVE-2026-20122
  12. https://nvd.nist.gov/vuln/detail/CVE-2026-20128
  13. https://nvd.nist.gov/vuln/detail/CVE-2026-20133
  14. https://nvd.nist.gov/vuln/detail/CVE-2026-33825
  15. https://nvd.nist.gov/vuln/detail/CVE-2026-39987
回頁首