The US Cyber Security and Information Agency CISA Warns of 15 Security Vulnerabilities That Are Actively Exploited

Abdul Ghani

The US security authority CISA warns companies and authorities of 15 older security gaps that are actively being exploited for attacks. The US Cyber ​​Security and Information Security Agency (CISA) warn of 15 legacy vulnerabilities that are currently being actively exploited. These were included in the agency's catalog, which is intended to sensitize companies and agencies to patching vulnerabilities that are already being actively used in attacks on IT systems. As recently as February, CISA significantly expanded its list and, among other things, warned of an actively exploited SMB vulnerability.

https://img.particlenews.com/image.php?url=23obbr_0ejLRBat00
Older vulnerabilities in Windows are apparently popular with attackers.Image From Geralt/Pixabay

CISA also set the US federal authorities a deadline of April 5, 2022. The patches for the security gaps that are already available must be installed by then. Most of the 15 vulnerabilities relate to the escalation of privileges in Windows and were discovered and fixed a long time ago.

In addition to Windows, however, Sonicwall's VPN software is also affected. The vulnerability affected over 800,000 devices at the time of its discovery and was initially patched poorly. The CISA catalog of known exploited vulnerabilities contains a total of 504 entries. Companies and authorities that import patches promptly should not be affected by the security gaps.

However, this is often not the case, as a security gap in Microsoft's Exchange e-mail server software was impressively demonstrated last year. Even weeks and months after a patch became available and warnings of active attacks based on the vulnerability were discussed in the media, thousands of servers were still unpatched.

CISA warns of the following 15 security vulnerabilities:

According to CISA's official site:

  • Microsoft Windows AppXSVC Privilege Escalation Vulnerability (CVE-2019-1129)
  • SonicWall SonicOS Buffer Overflow Vulnerability (CVE-2020-5135)
  • Microsoft Windows Error Reporting Manager Privilege Escalation Vulnerability (CVE-2019-1315)
  • Microsoft Windows AppX Deployment Server Privilege Escalation Vulnerability (CVE-2019-1253)
  • Microsoft Windows UPnP Service Privilege Escalation Vulnerability (CVE-2019-1405)
  • Microsoft Windows Privilege Escalation Vulnerability (CVE-2019-1322)
  • Microsoft Task Scheduler Privilege Escalation Vulnerability (CVE-2019-1069)
  • Microsoft Windows AppXSVC Privilege Escalation Vulnerability (CVE-2019-0841)
  • Microsoft Windows AppXSVC Privilege Escalation Vulnerability (CVE-2019-1064)
  • Microsoft Windows Privilege Escalation Vulnerability (CVE-2019-0543)
  • Microsoft Windows Transaction Manager Privilege Escalation Vulnerability (CVE-2017-0101)
  • Microsoft Win32k Privilege Escalation Vulnerability (CVE-2018-8120)
  • Microsoft Windows Kernel Privilege Escalation Vulnerability (CVE-2016-3309 )
  • Microsoft Win32k Privilege Escalation Vulnerability (CVE-2019-1132)
  • Microsoft Win32k Memory Corruption Vulnerability (CVE-2015-2546)

Comments / 0

Published by

Member Of Freelancers Union (USA), Freelance Writer!, and Digital Creator. Ghani Mengal is an enthusiast Freelance blogger and digital marketer. His content has been published and featured on many popular blogs, websites, and publications. Including TeelFeed, LifeHack.org, Data-Driven Investor, TextSniper, Scientific Publication The Predict, The Startup, The Ascent, Heart Affairs, Illumination, And The List goes on.

N/A
2787 followers

More from Abdul Ghani

Comments / 0