CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.

  • CVE-2022-28810 Zoho ManageEngine ADSelfService Plus Remote Code Execution Vulnerability
  • CVE-2022-33891 Apache Spark Command Injection Vulnerability

Read more…
Source: U.S. Cybersecurity and Infrastructure Security Agency