October 3, 2024
CISA Known Exploited Vulnerability Catalog – September 2024
For a detailed CISA’s KEV Catalog, download the pdf file here
Summary
The Known Exploited Vulnerability (KEV) catalog, maintained by CISA, is the authoritative source of vulnerabilities that have been exploited in the wild.
It is recommended that all organizations review and monitor the KEV catalog, prioritize remediation of listed vulnerabilities, and reduce the likelihood of compromise by threat actors. In September 2024, twenty-six vulnerabilities met the criteria for inclusion in the CISA’s KEV catalog. Of these, ten are zero-day vulnerabilities; five have been exploited by known threat actors and employed in attacks.