CISA Advisories

CISA Advisories Vulnerability Disclosure Microsoft Apr 30

ABB Ability OPTIMAX

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to bypass user authentication on OPTIMAX installations that make use ...

CISA Advisories →

CISA Advisories General Apr 30

ABB AWIN Gateways

View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to remotely reboot the device or complete an unauthenticated query...

CISA Advisories →

CISA Advisories Operational Technology Apr 29

Adapting Zero Trust Principles to Operational Technology

Adapting Zero Trust Principles to Operational Technology CISA, in coordination with the Department of War, Department of Energy, Federal Bureau of Investigat...

CISA Advisories →

CISA Advisories Vulnerability Disclosure Apr 28

NSA GRASSMARLIN

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to disclose sensitive information. The following versions of NSA GRAS...

CISA Advisories →

CISA Advisories CVE Microsoft Apr 28

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2024-1708 ConnectW...

2 IOCs

CISA Advisories →

CISA Advisories CVE Apr 24

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

T1059 4 IOCs

CISA Advisories →

CISA Advisories CVE Apr 23

Milesight Cameras

View CSAF Summary Successful exploitation of these vulnerabilities could crash the device being accessed or allow remote code execution. The following versio...

T1190 6 IOCs

CISA Advisories →

CISA Advisories Advisory Apr 23

Defending Against China-Nexus Covert Networks of Compromised Devices

Defending against china-nexus covert networks of compromised devices executive summary Defending against China-nexus covert networks of compromised devices E...

CISA Advisories →

CISA Advisories CVE Apr 23

SpiceJet Online Booking System

View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to disclose sensitive information. The following versions of Spice...

2 IOCs

CISA Advisories →

CISA Advisories CVE Apr 23

Yadea T5 Electric Bicycle

View CSAF Summary Successful exploitation of this vulnerability could result in an attacker being able to unlock and start the bicycle, leading to vehicle th...

1 IOC

CISA Advisories →

CISA Advisories Campaigns Cisco Apr 23

FIRESTARTER Backdoor

Malware Analysis Report at a Glance Malware Name FIRESTARTER Original Publication April 23, 2026 Executive Summary The Cybersecurity and Infrastructure Secur...

CISA Advisories →

CISA Advisories CVE Apr 23

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-39987 Marimo Re...

T1190 1 IOC

CISA Advisories →

CISA Advisories CVE Apr 23

Intrado 911 Emergency Gateway (EGW)

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to read, modify, or delete files. The following versions of Intrado 9...

1 IOC

CISA Advisories →

CISA Advisories CVE Apr 23

Hangzhou Xiongmai Technology Co., Ltd XM530 IP Camera

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to bypass authentication and have remote access to sensitive informat...

1 IOC

CISA Advisories →

CISA Advisories CVE Apr 23

Carlson Software VASCO-B GNSS Receiver

View CSAF Summary Successful exploitation of this vulnerability could enable a remote attacker to alter critical system functions or disrupt device operation...

1 IOC

CISA Advisories →

CISA Advisories CVE Microsoft Apr 22

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-33825 Microsoft...

1 IOC

CISA Advisories →

CISA Advisories CVE Apr 21

Hardy Barth Salia EV Charge Controller

View CSAF Summary Successful exploitation of these vulnerabilities could crash the device being accessed; a buffer overflow condition may allow remote code e...

T1190 2 IOCs

CISA Advisories →