CISA’s KEV Catalog Updated with 3 New Flaws Threatening IT Management Systems
The Hacker News – Ravie Lakshmanan
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added three security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.

The list of vulnerabilities is below â CVE-2022-35914 (CVSS score: 9.8) â Teclib GLPI Remote Code Execution Vulnerability CVE-2022-33891 (CVSS score: 8.8) â Apache Spark Command Injection Vulnerability CVE-2022-28810 (CVSS score: 6.8) â Zoho ManageEngine ADSelfService Plus Remote Code Execution Vulnerability
Link: https://thehackernews.com/2023/03/cisas-kev-catalog-updated-with-3-new.html