11/11至11/17 Known Exploited Vulnerabilities Catalog(KEV)週報
- 發布單位:TWCERT/CC
- 更新日期:2024-12-02
- 點閱次數:482
- 內容說明:
CISA於11/11至11/17在Known Exploited Vulnerabilities Catalog(KEV)中發布7個已遭駭客利用之漏洞。
- 影響平台:
Palo Alto Networks|Expedition
Atlassian|Jira Server and Data Center
Cisco|Adaptive Security Appliance (ASA)
Metabase|Metabase
Microsoft|Windows
- 處置建議:
修補說明請參考以下官方連結:
Palo Alto Networks|Expedition
https://security.paloaltonetworks.com/PAN-SA-2024-0010
Atlassian|Jira Server and Data Center
https://jira.atlassian.com/browse/JRASERVER-72695
Cisco|Adaptive Security Appliance (ASA)
https://web.archive.org/web/20140403043510/http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2120
Metabase|Metabase
https://github.com/metabase/metabase/security/advisories/GHSA-w73v-6p7p-fpfr
Microsoft|Windows
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2024-49039
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-43451
- CVE編號:
CVE-2014-2120
CVE-2021-26086
CVE-2021-41277
CVE-2024-9463
CVE-2024-9465
CVE-2024-43451
CVE-2024-49039
相關連結
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog
- https://nvd.nist.gov/vuln/detail/CVE-2014-2120
- https://nvd.nist.gov/vuln/detail/CVE-2021-26086
- https://nvd.nist.gov/vuln/detail/CVE-2021-41277
- https://nvd.nist.gov/vuln/detail/CVE-2024-9463
- https://nvd.nist.gov/vuln/detail/CVE-2024-9465
- https://nvd.nist.gov/vuln/detail/CVE-2024-43451
- https://nvd.nist.gov/vuln/detail/CVE-2024-49039