CISA Adds Five Actively Exploited Vulnerabilities to Known Exploited Vulnerabilities Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added five security vulnerabilities affecting Advantive VeraCore and Ivanti Endpoint Manager (EPM) to its catalog of known exploited vulnerabilities (KEV) on Monday, due to evidence of active exploitation. Among the vulnerabilities is CVE-2024-57968, a flaw involving unrestricted file downloads in Advantive VeraCore. These additions are based on evidence of active exploitation in the wild.