1/6至1/12 Known Exploited Vulnerabilities Catalog(KEV)週報
- 發布單位:TWCERT/CC
- 更新日期:2025-01-22
- 點閱次數:416
- 內容說明:
CISA於1/6至1/12在Known Exploited Vulnerabilities Catalog(KEV)中發布4個已遭駭客利用之漏洞。
- 影響平台:
Ivanti|Connect Secure、Policy Secure及ZTA Gateways
Oracle|WebLogic Server
Mitel|MiCollab
- 處置建議:
Ivanti|Connect Secure、Policy Secure及ZTA Gateways
https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Connect-Secure-Policy-Secure-ZTA-Gateways-CVE-2025-0282-CVE-2025-0283
Oracle|WebLogic Server
https://www.oracle.com/security-alerts/cpuapr2020.html
Mitel|MiCollab
https://www.mitel.com/support/security-advisories/mitel-product-security-advisory-misa-2024-0029
- CVE編號:
CVE-2020-2883
CVE-2024-41713
CVE-2024-55550
CVE-2025-0282
相關連結
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog
- https://nvd.nist.gov/vuln/detail/CVE-2020-2883
- https://nvd.nist.gov/vuln/detail/CVE-2024-41713
- https://nvd.nist.gov/vuln/detail/CVE-2024-55550
- https://nvd.nist.gov/vuln/detail/CVE-2025-0282
- https://www.cisa.gov/cisa-mitigation-instructions-CVE-2025-0282