Topic: kev catalog

Sort by: Relevance | Date
  • Federal Agency Hacked Through GeoServer Vulnerability
    September 25, 2025

    Federal Agency Hacked Through GeoServer Vulnerability

    A federal agency suffered a cybersecurity breach in July 2024 when attackers exploited a critical, unpatched vulnerability in a public-facing GeoServer, allowing them to deploy malicious tools and establish persistence. The attackers used the same vulnerability to breach a second server, moved la...

    Read More »
  • CISA Warns of Critical Git Flaw Under Active Exploitation
    August 27, 2025

    CISA Warns of Critical Git Flaw Under Active Exploitation

    CISA has issued an urgent warning about a critical vulnerability in Git (CVE-2025-48384) that allows arbitrary code execution and requires federal agencies to patch by September 15th. The flaw arises from improper handling of carriage return characters in configuration files, which attackers can ...

    Read More »

Related Topics

privilege escalation (32) incident response (75) threat actors (26) Mitigation Strategies (22) lateral movement (18) security posture (9) code execution (8) cisa advisory (4)