9/30至10/6 Known Exploited Vulnerabilities Catalog(KEV)週報
- 發布單位:TWCERT/CC
- 更新日期:2024-10-28
- 點閱次數:581
- 內容說明:
CISA於9/30至10/6在Known Exploited Vulnerabilities Catalog(KEV)中發布6個已遭駭客利用之漏洞。
- 影響平台:
Synacor|Zimbra Collaboration
Ivanti|Endpoint Manager (EPM)
SAP|Commerce Cloud
Motion Spell|GPAC
DrayTek|Multiple Vigor Routers
D-Link|DIR-820 Router
- 處置建議:
修補說明請參考以下官方連結:
Synacor|Zimbra Collaboration
https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories
Ivanti|Endpoint Manager (EPM)
https://forums.ivanti.com/s/article/Security-Advisory-May-2024
SAP|Commerce Cloud
https://web.archive.org/web/20191214053020/https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=523998017
Motion Spell|GPAC
https://github.com/gpac/gpac/commit/64a2e1b799352ac7d7aad1989bc06e7b0f2b01db
DrayTek|Multiple Vigor Routers
https://www.draytek.com/about/security-advisory/vigor3900-/-vigor2960-/-vigor300b-remote-code-injection/execution-vulnerability
D-Link|DIR-820 Router
https://supportannouncement.us.dlink.com/security/publication.aspx?name=SAP10358
- CVE編號:
CVE-2019-0344
CVE-2020-15415
CVE-2021-4043
CVE-2023-25280
CVE-2024-29824
CVE-2024-45519
相關連結
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog
- https://wiki.zimbra.com/wiki/Zimbra_Security_Advisories
- https://forums.ivanti.com/s/article/Security-Advisory-May-2024
- https://web.archive.org/web/20191214053020/https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageI
- https://github.com/gpac/gpac/commit/64a2e1b799352ac7d7aad1989bc06e7b0f2b01db
- https://www.draytek.com/about/security-advisory/vigor3900-/-vigor2960-/-vigor300b-remote-code-inject
- https://supportannouncement.us.dlink.com/security/publication.aspx?name=SAP10358
- https://nvd.nist.gov/vuln/detail/CVE-2019-0344
- https://nvd.nist.gov/vuln/detail/CVE-2020-15415
- https://nvd.nist.gov/vuln/detail/CVE-2021-4043
- https://nvd.nist.gov/vuln/detail/CVE-2023-25280
- https://nvd.nist.gov/vuln/detail/CVE-2024-29824
- https://nvd.nist.gov/vuln/detail/CVE-2024-45519