CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.
- CVE-2022-28810 Zoho ManageEngine ADSelfService Plus Remote Code Execution Vulnerability
- CVE-2022-33891 Apache Spark Command Injection Vulnerability
Read more…
Source: U.S. Cybersecurity and Infrastructure Security Agency