按 Enter 到中央內容區塊
:::

TWCERT/CC台灣電腦網路危機處理暨協調中心|企業資安通報協處|資安情資分享|漏洞通報|資安聯盟|資安電子報

:::

6/8至6/14 Known Exploited Vulnerabilities Catalog(KEV)週報

發布日期:
字型大小:
  • 發布單位:TWCERT/CC
  • 更新日期:2026-07-02
  • 點閱次數:124
  • 內容說明

CISA於6/8至6/14在Known Exploited Vulnerabilities Catalog(KEV)中發布7個已遭駭客利用之漏洞。

  • 影響平台

Arista|Extensible Operating System

BerriAI|LiteLLM

Check Point|Security Gateway

Cisco|Catalyst SD-WAN Manager

Google|Chromium V8

Ivanti|Sentry

Oracle|PeopleSoft Enterprise PeopleTools

  • 處置建議

修補說明請參考以下官方連結:

Arista|Extensible Operating System

https://www.arista.com/en/support/advisories-notices/security-advisory/24005-security-advisory-0137

BerriAI|LiteLLM

https://github.com/BerriAI/litellm/security/advisories/GHSA-v4p8-mg3p-g94g

https://github.com/BerriAI/litellm/releases/tag/v1.83.7-stable

Check Point|Security Gateway

https://blog.checkpoint.com/security/check-point-releases-important-hotfix-for-vulnerabilities-in-deprecated-ikev1-vpn-protocol/

https://support.checkpoint.com/results/sk/sk185033_gl=1*1wqeqhc*_gcl_au*MTI1MzE5MjI2LjE3ODA5MzQ1NTM.

Cisco|Catalyst SD-WAN Manager

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-privesc-4uxFrdzx

Google|Chromium V8

https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html

https://issues.chromium.org/issues/506689381

Ivanti|Sentry

https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-Sentry-CVE-2026-10520-CVE-2026-10523?language=en_US

https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk

https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk

Oracle|PeopleSoft Enterprise PeopleTools

https://www.oracle.com/security-s/-cve-2026-35273.html

https://support.oracle.com/signin/

https://www.cisa.gov/news-events/directives/bod-26-04-prioritizing-security-updates-based-risk

https://www.cisa.gov/news-events/directives/bod-26-04-implementation-guidance-prioritizing-security-updates-based-risk

  • CVE編號

CVE-2026-7473

CVE-2026-10520

CVE-2026-11645

CVE-2026-20245

CVE-2026-35273

CVE-2026-42271

CVE-2026-50751

回頁首