March 11, 2025 – Washington, D.C.: The Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities (KEV) catalog to include five newly identified vulnerabilities currently being exploited in the wild.
The newly added vulnerabilities are:
-
CVE-2024-57968: An unrestricted file upload vulnerability in Advantive VeraCore allowing unauthenticated remote attackers to upload files to unintended directories via the upload.aspx endpoint.
-
CVE-2025-25181: An SQL injection vulnerability in Advantive VeraCore permitting remote attackers to execute arbitrary SQL commands.
-
CVE-2024-13159: An absolute path traversal vulnerability in Ivanti Endpoint Manager (EPM) enabling unauthenticated remote attackers to leak sensitive information.
-
CVE-2024-13160: Another absolute path traversal vulnerability in Ivanti EPM allowing unauthenticated remote attackers to access sensitive data.
-
CVE-2024-13161: A third absolute path traversal vulnerability in Ivanti EPM facilitating unauthorized access to confidential information.
The exploitation of the VeraCore vulnerabilities has been attributed to a Vietnamese threat actor known as XE Group, which has been observed deploying reverse shells and web shells to maintain persistent remote access to compromised systems.
While there are no public reports detailing the exploitation of the Ivanti EPM vulnerabilities, a proof-of-concept exploit was released by cybersecurity firm Horizon3.ai last month. The company described these vulnerabilities as credential coercion” bugs that could allow unauthenticated attackers to compromise servers.
In response to these findings, CISA has mandated that Federal Civilian Executive Branch (FCEB) agencies apply the necessary patches by March 31, 2025, to secure their networks against potential threats.
Organizations must prioritize timely remediation of known vulnerabilities to protect against active threats. Implementing comprehensive security protocols is essential to safeguard critical infrastructure.
Data breaches and exploited vulnerabilities highlight the importance of safeguarding personal information. Utilizing a reliable VPN like ExpressVPN encrypts your internet traffic, enhancing online security and privacy. Stay protected with ExpressVPN today!
Other News At VPNRanks
Stay Informed with VPNRanks
Hey, wait! Stay informed on the latest privacy updates, cybersecurity insights, and internet freedom news by following VPNRanks news daily! As your primary resource for critical updates in online security, we ensure you’re always in the know. Make VPNRanks your go-to guide for safeguarding your digital life!
