Source URL: https://www.cisa.gov/news-events/alerts/2024/10/23/cisa-adds-one-known-exploited-vulnerability-catalog
Source: Alerts
Title: CISA Adds One Known Exploited Vulnerability to Catalog
Feedly Summary: CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation, as confirmed by Fortinet.
CVE-2024-47575 Fortinet FortiManager Missing Authentication Vulnerability
These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.
CISA encourages users and administrators to see Fortinet Advisory FG-IR-24-423 and apply necessary patches and mitigations.
Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.
Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.
AI Summary and Description: Yes
Summary: The text discusses a new vulnerability added to the Known Exploited Vulnerabilities Catalog by CISA, specifically a missing authentication vulnerability in Fortinet’s FortiManager. It highlights the significant risks posed by such vulnerabilities and encourages organizations to take action in line with the Binding Operational Directive (BOD) 22-01.
Detailed Description:
– CISA has updated its Known Exploited Vulnerabilities Catalog, highlighting the CVE-2024-47575, which involves a missing authentication vulnerability in Fortinet’s FortiManager.
– The addition of this vulnerability is based on active exploitation evidence corroborated by Fortinet.
– Vulnerabilities like CVE-2024-47575 are common attack vectors that cybercriminals utilize, posing severe risks to federal enterprises and beyond.
– CISA recommends that users and administrators review Fortinet Advisory FG-IR-24-423 to apply necessary patches and mitigations effectively.
– The Binding Operational Directive (BOD) 22-01 mandates federal agencies to remediate identified vulnerabilities by a specified date to safeguard their networks against active threats.
– Although BOD 22-01 is directed at Federal Civilian Executive Branch (FCEB) agencies, CISA emphasizes that all organizations should prioritize remediation of the catalog vulnerabilities as part of their broader vulnerability management strategies.
– CISA plans to continuously update the catalog with vulnerabilities meeting the necessary criteria.
Key Points:
– Awareness of emerging vulnerabilities is critical for security professionals, particularly in managing risk within federal and private sectors.
– Fortinet’s vulnerability underscores the importance of timely response to security advisories.
– BOD 22-01 and the Known Exploited Vulnerabilities Catalog serve as important frameworks for organizations to mitigate risks effectively.
This information is particularly relevant for professionals in AI security, infrastructure security, and general information security, emphasizing the ongoing need for vigilance regarding vulnerabilities in software and cloud-based services.