## CISA Updates KEV Catalog with Actively Exploited Vulnerabilities **CISA** has updated its Known Exploited Vulnerabilities (KEV) Catalog with four new entries, highlighting the urgent need for organizations to patch these flaws. The additions are based on evidence of active exploitation, making them prime targets for malicious actors. ### New Vulnerabilities Added: * **CVE-2024-7399**: **Samsung** MagicINFO 9 Server Path Traversal Vulnerability. This vulnerability allows attackers to access unauthorized files and directories on the server. * **CVE-2024-57726**: **SimpleHelp** Missing Authorization Vulnerability. This flaw could allow unauthorized access to **SimpleHelp** systems. * **CVE-2024-57728**: **SimpleHelp** Path Traversal Vulnerability. Similar to the **Samsung** vulnerability, this allows attackers to navigate and access sensitive files. * **CVE-2025-29635**: **D-Link** DIR-823X Command Injection Vulnerability. This allows attackers to execute arbitrary commands on the affected **D-Link** router. ### The Importance of the KEV Catalog The KEV Catalog is maintained under **Binding Operational Directive (BOD) 22-01**: Reducing the Significant Risk of Known Exploited Vulnerabilities. This directive mandates that Federal Civilian Executive Branch (FCEB) agencies remediate vulnerabilities listed in the catalog by specified due dates. The goal is to protect FCEB networks from active threats by addressing known and exploited vulnerabilities. While **BOD 22-01** is specifically applicable to FCEB agencies, **CISA** strongly advises *all* organizations to prioritize the timely remediation of KEV Catalog vulnerabilities. Integrating this practice into vulnerability management programs is crucial for reducing exposure to cyberattacks. **CISA** continuously updates the KEV Catalog with vulnerabilities that meet specified criteria, making it a vital resource for cybersecurity professionals.