2/5至2/19 Kown Exploited Vulnerabilities Catalog(KEV)週報
- 發布單位:TWCERT/CC
- 更新日期:2024-04-23
- 點閱次數:31
- 內容說明:
CISA於2/5至2/19在Kown Exploited Vulnerabilities Catalog(KEV)中發佈7個已遭駭客利用之漏洞。
- 影響平台:
受影響廠商與產品名稱如下:
Google Chromium V8
Fortinet FortiOS
Roundcube Webmail
Microsoft Windows Internet Shortcut Files
Microsoft Windows SmartScreen
Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)
Microsoft Exchange Server
- 處置建議:
修補說明請參考以下官方連結:
Google Chromium V8
Fortinet FortiOS
Roundcube Webmail
Microsoft Windows Internet Shortcut Files
Microsoft Windows SmartScreen
Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD)
Microsoft Exchange Server
- CVE編號:
CVE-2023-4762
CVE-2024-21762
CVE-2023-43770
CVE-2024-21412
CVE-2024-21351
CVE-2020-3259
CVE-2024-21410
相關連結
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog
- https://nvd.nist.gov/vuln/detail/CVE-2023-4762
- https://nvd.nist.gov/vuln/detail/CVE-2024-21762
- https://nvd.nist.gov/vuln/detail/CVE-2023-43770
- https://nvd.nist.gov/vuln/detail/CVE-2024-21412
- https://nvd.nist.gov/vuln/detail/CVE-2024-21351
- https://nvd.nist.gov/vuln/detail/CVE-2024-21351
- https://nvd.nist.gov/vuln/detail/CVE-2024-21410
- https://nvd.nist.gov/vuln/detail/CVE-2024-21410
- https://fortiguard.com/psirt/FG-IR-24-015
- https://roundcube.net/news/2023/09/15/security-update-1.6.3-released
- https://roundcube.net/news/2023/09/15/security-update-1.6.3-released
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21351
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-info-disclose-
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21410
- https://support.apple.com/en-us/HT213530
- https://support.apple.com/en-us/HT213532
- https://support.apple.com/en-us/HT213535
- https://support.apple.com/en-us/HT213536