Summary

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added eight new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. These include three actively exploited flaws in Cisco Catalyst SD-WAN Manager.

Key Points

• CISA updated its KEV catalog on Monday, adding eight new vulnerabilities.
• Three of these vulnerabilities impact Cisco Catalyst SD-WAN Manager.
• The vulnerabilities are actively being exploited, prompting their inclusion in the KEV list.
• One of the vulnerabilities is CVE-2023-27351, which has a CVSS score of 8.2, indicating a significant risk.
• CVE-2023-27351 is an improper authentication vulnerability in PaperCut.
• CISA has set federal deadlines for addressing these vulnerabilities between April and May 2026.

Analysis

The inclusion of these vulnerabilities in the KEV catalog highlights the ongoing threat landscape and the need for vigilance among IT professionals. The active exploitation of these flaws, especially those affecting widely used products like Cisco Catalyst SD-WAN Manager, underscores the importance of timely patching and vulnerability management.

Conclusion

IT professionals should prioritize reviewing and applying patches for the newly listed vulnerabilities in the KEV catalog. Ensuring systems are updated and secure is crucial to mitigating potential exploitation risks.