惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

酷 壳 – CoolShell
酷 壳 – CoolShell
H
Hacker News: Front Page
P
Palo Alto Networks Blog
T
ThreatConnect
Apple Machine Learning Research
Apple Machine Learning Research
博客园_首页
T
True Tiger Recordings
P
Privacy & Cybersecurity Law Blog
B
Blog
IT之家
IT之家
Last Week in AI
Last Week in AI
F
Full Disclosure
Hacker News: Ask HN
Hacker News: Ask HN
C
Comments on: Blog
Microsoft Azure Blog
Microsoft Azure Blog
C
Cybersecurity and Infrastructure Security Agency CISA
Microsoft Security Blog
Microsoft Security Blog
博客园 - 【当耐特】
N
News and Events Feed by Topic
NISL@THU
NISL@THU
腾讯CDC
雷峰网
雷峰网
Security Latest
Security Latest
李成银的技术随笔
M
Microsoft Research Blog - Microsoft Research
L
LangChain Blog
L
Lohrmann on Cybersecurity
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
C
Check Point Blog
Y
Y Combinator Blog
Recent Announcements
Recent Announcements
博客园 - Franky
N
News | PayPal Newsroom
V
V2EX
A
About on SuperTechFans
The Register - Security
The Register - Security
月光博客
月光博客
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
Google Online Security Blog
Google Online Security Blog
MyScale Blog
MyScale Blog
Cisco Talos Blog
Cisco Talos Blog
Vercel News
Vercel News
WordPress大学
WordPress大学
C
Cyber Attacks, Cyber Crime and Cyber Security
The Hacker News
The Hacker News
IntelliJ IDEA : IntelliJ IDEA – the Leading IDE for Professional Development in Java and Kotlin | The JetBrains Blog
IntelliJ IDEA : IntelliJ IDEA – the Leading IDE for Professional Development in Java and Kotlin | The JetBrains Blog
爱范儿
爱范儿
A
Arctic Wolf
L
LINUX DO - 最新话题
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More

Cyberwarzone

Cloudflare Access Adds Managed OAuth for Agent-Ready Apps AI Detects Human-Like Speech Patterns in Sperm Whale Clicks NVIDIA ALCHEMI Toolkit Accelerates AI Scientific Research LinkedIn Sued Over Browser Extension Scanning Dutch Parliament Probes ChipSoft Ransomware Attack Dutch Police Arrest Eight in VerifTools Identity Fraud Case Iran’s Internet Blackout: A Two-Tiered System of Control France’s New ‘Forward Deterrence’ Doctrine Explained Future Soldier: Next-Gen Gear & Human-Machine Interface CPUID Website Hacked to Distribute Malware Smart Slider 3 Pro Plugin Hit by Supply-Chain Attack MS Reinstates VeraCrypt & WireGuard Dev Accounts Microsoft Finds Flaw in Android Crypto Wallets US & UK Target ‘Approval Phishing’ Scams US Blockades Strait of Hormuz, Sparking Trade Fears Dutch Parliament Questions EU-Wide Social Media Ban Adobe Patches Exploited Acrobat Reader Flaw Strait of Hormuz Closure Threatens Global Food Security Legal Battle Brews Over ‘Pro’ Name in Dutch Politics Pentagon Fund Aims to Bridge ‘Valley of Death’ for New Tech Hallmark Data Breach Exposes 1.7 Million Customers Basic-Fit Data Breach Affects 200,000 Dutch Customers Ex-Lafarge CEO Jailed for Financing Syrian Terror Groups Mozilla Slams Microsoft for Forcing Copilot on Users Booking.com Alerts Customers to Potential Data Breach Ivanti Hack at Dutch Custodial Agency Under Investigation Wind Turbine Plan in Zuid-Holland Sparks Opposition Basic-Fit Alerts 200,000 Customers to Data Breach Europe Speedweek Increases Road Surveillance Ukraine Drone Strikes Strain Russian Air Defenses €50,000 Seized From Smuggled Teddy Bear in DHL Hub Rotterdam: Explosions Up, Shootings Down in 2025 Netherlands Opposes US Strait Blockade, Cites Escalation Amsterdam Expands Paid Parking in Zuidoost, Ends Free Zones AFM Warns of AI-Driven Market Risks Why Cyberwarfare Uses Ambiguity and Delayed Attribution as Pressure Why Cyberwarfare Pressures Trusted Access and Account Recovery Paths Why Cyberwarfare Keeps Pressuring Recovery Paths and Fallback Systems Why Cyberwarfare Keeps Pressuring Shared Service Providers Why Cyberwarfare Pressures Industry Clusters Why Cyberwarfare Turns Nearby Economies Into Spillover Zones Why Cyberwarfare Forces Firms to Scan Networks Early Why Cyberwarfare Targets Crisis Messaging Systems Why Cyberwarfare Keeps Pressuring Energy Networks Why Cyberwarfare Keeps Pressuring Communications Networks Why Cyberwarfare Keeps Pressuring Shipping and Logistics Networks Why Cyberwarfare Keeps Pressuring Banks and Financial Networks Why Endpoint Management Systems Are Becoming Cyberwarfare Choke Points Why Cyberwarfare Targets Healthcare and Medical Supply Chains Why Cyberwarfare Increasingly Exploits Trusted Civilian Apps Why Cyberwarfare Hits Civilian Companies First Critical Quest KACE SMA RCE (CVE-2025-32975) Under Attack Handala Rebounds After FBI Seizure, Exposing Iran Cyberwar Resilience Top 10 Cyber Escalation Risks Security Leaders Should Understand Top 10 Questions to Ask Before Calling an Incident Cyberwarfare Top 10 Cyber Deterrence Problems Security Leaders Should Understand Top 10 OT and ICS Risks in Modern Cyberwarfare Top 10 Cyberwarfare Doctrine Ideas Security Leaders Should Understand Top 10 Attribution Problems in State-Linked Cyber Operations Iran Cyberwar: Identity Systems Become the Target Iran Cyberwar Shifts to Spillover, Retaliation, and Control Top 10 Critical Infrastructure Sectors Most Exposed in Cyberwarfare Top 10 Below-Threshold Cyber Operations States Use Top 10 Differences Between Cyberwarfare and Cyber Espionage Top 10 Signs a Cyber Campaign Is Pre-Positioning for Future Conflict Top 10 Signs a CVE Needs Clear Closure Criteria Top 10 Signs a CVE Needs Proof of Remediation Top 10 Signs a CVE Needs a Risk Acceptance Review Top 10 Signs a CVE Needs Asset Owner Escalation Top 10 Signs a CVE Needs a Special Maintenance Window Top 10 Signs a CVE Needs Compensating Controls Before You Can Patch Top 10 Signs a CVE Needs a Staged Patch Rollout Top 10 Signs a CVE Is More Dangerous as Part of an Exploit Chain Top 10 CVE Sources Security Teams Should Check After Reading a CVE Top 10 CVE Fields Security Teams Should Review Before Patching Top 10 CVE Items Security Teams Should Patch First in 2026 Trivy Supply Chain Attack Spreads Infostealer, Worm, and Kubernetes Wiper via Docker Hub Hong Kong Police Can Demand Phone Passwords Under New Security Law North Korean Hackers Deploy StoatWaffle Malware via VS Code Projects FBI Seizes MOIS Leak Sites After Handala Attack Hit Hospitals Baghdad to Ras Laffan: Iran-Linked Strikes Widen the Regional War Dutch Police Employee Critical of Iranian Regime Shot in Schoonhoven Lebanon Death Toll Tops 1,000 as Israeli Bombardment Continues Pentagon Seeks $200 Billion for Iran War With No End Date in Sight Trump’s Pearl Harbor Remark Exposes Japan’s Iran War Dilemma Haifa Refinery Hit as Iran Expands Retaliation to Israeli Energy Sites Who Commands Iran Now After Larijani’s Killing? How to Report Remediation Progress to Leadership Which Vulnerability Remediation Metrics Matter Gulf Drug Supply Chains Strain as Hormuz Disruption Spreads LNG Buyers Scramble as Hormuz Disruption Hits Qatari Supply Routes Gulf Importers Reroute Supplies as Hormuz Disruption Spreads How to Run Emergency Change Approval for Security Patches EU Eases Gas Import Rules as Iran Crisis Threatens Hormuz Flows Gulf Producers Turn to Pipelines as Hormuz Shipping Risk Deepens How to Communicate During Emergency Patching Iran Warns Gulf Energy Sites to Evacuate After South Pars Strike Who Owns Vulnerability Remediation? Europe Signals Distance From Trump’s Iran War While Watching Hormuz What to Monitor After Emergency Patching to Catch Incomplete Fixes
CISA adds two actively exploited vulnerabilities to KEV catalog
2026-03-16 · via Cyberwarzone

Peter Chofield Avatar

Peter Chofield

·

1–2 minutes

CISA on March 13 added two vulnerabilities affecting Hikvision products and Rockwell Automation Logix controllers to its Known Exploited Vulnerabilities catalog, citing evidence of active exploitation in the wild. The agency said the additions were made under Binding Operational Directive 22-01, which requires Federal Civilian Executive Branch agencies to remediate listed flaws by a set deadline.

According to CISA’s March 13 alert, the newly added flaws are CVE-2017-7921, an improper authentication vulnerability affecting multiple Hikvision products, and CVE-2021-22681, an authentication bypass vulnerability in Rockwell Automation Logix controllers. CISA’s alert says federal agencies must remediate both issues by April 3, 2026.

“These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.” — CISA alert, March 13, 2026

The Hikvision entry in the KEV catalog describes CVE-2017-7921 as an improper authentication flaw that could allow attackers to gain unauthorized access to vulnerable devices. The Rockwell entry describes CVE-2021-22681 as a flaw in which Studio 5000 Logix Designer software may allow a key to be discovered that is used to verify communication with Logix controllers, potentially allowing an unauthorized application to connect with those controllers if exploited.

KEV additions span surveillance gear and industrial controllers

The March 13 update adds another pair of long-lived but still dangerous vulnerabilities to the KEV catalog, covering both edge surveillance infrastructure and industrial control environments. In the Rockwell case, the affected technology sits in operational technology environments where unauthorized access to controller communications could have broader downstream impact than a typical enterprise software flaw.

CISA’s bulletin does not provide victim counts, indicators of compromise, or detailed attack-chain information for either vulnerability. The agency instead directs defenders to vendor guidance and the KEV catalog entries for remediation and mitigation details.

The additions extend the recent cadence of KEV updates already covered by Cyberwarzone, including CISA’s March 5 batch update adding five actively exploited vulnerabilities and the n8n remote code execution flaw that CISA added to the KEV catalog after active exploitation.

About the Author

Peter Chofield Avatar

Peter Chofield

Passionate about cybersecurity, Peter dedicates his days to reading, analyzing, and writing about the trends shaping the online world.

此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。