Known Exploited Vulnerabilities Catalog
CISA Adds 6 Known Exploited Vulnerabilities to Catalog
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a stark warning for organizations nationwide, adding six critical vulnerabilities to its “Known Exploited Vulnerabilities” (KEV) catalog. Six critical vulnerabilities, including flaws in ...
How to Comply With the US Government’s Strict Software Requirements
We break down H.R. 7900, a well-intentioned but perhaps unrealistic bill that requires companies working with the DoD to provide a software bill of materials (SBOM) and patch all known vulnerabilities. The ...
How to Comply With the DoD’s Newer and Stricter Software Requirements
We break down H.R. 7900, a well-intentioned but perhaps unrealistic bill that requires companies working with the DoD to provide a software bill of materials (SBOM) and patch all known vulnerabilities. The ...
CISA Adds Five ‘New’ Exploits to KEV Catalog, Including 2014’s Heartbleed Vulnerability
On May 4, 2022, the Cybersecurity & Infrastructure Security Agency (CISA) added five “new” vulnerabilities to the Known Exploited Vulnerabilities (KEV) Catalog. Three of the entries were originally disclosed in 2014, including ...
CISA’s BOD 22-01 Update: Revamping Vulnerability Management Capabilities for Federal Agencies
The Cybersecurity and Infrastructure Security Agency (CISA) has added 95 more vulnerabilities to Binding Operational Directive (BOD) 22-01, as of March 3. Also known as the Known Exploited Vulnerabilities (KEV) Catalog, BOD ...