CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.
- CVE-2023-2868 Barracuda Networks ESG Appliance Improper Input Validation Vulnerability
These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.
Source: U.S. Cybersecurity and Infrastructure Security Agency
Related story: CISA Releases One Industrial Control Systems Advisory