Week 1: CISA Adds Actively Exploited Broadcom and Commvault Flaws to KEV Database

I wanted to share a quick but important update about two new security vulnerabilities that have been added to CISA’s Known Exploited Vulnerabilities (KEV) list. These flaws are already being actively exploited, so it’s worth checking if your systems might be affected.

  • CVE-2025-1976 is a high-severity code injection vulnerability in Broadcom’s Brocade Fabric OS versions 9.1.0 through 9.1.1d6. It allows a local user with admin privileges to execute arbitrary code with full root access. This has been fixed in version 9.1.1d7.

  • CVE-2025-3928 affects the Commvault Web Server and could let authenticated attackers deploy web shells. Although it requires valid user credentials, the risk is significant if an account is compromised. Multiple versions of the software across Windows and Linux are impacted, with patches now available.

CISA is urging all federal agencies to apply patches by May 19, 2025, and organizations in the private sector should do the same. While public details about the exploits are limited, the fact that these are confirmed to be in use in the wild makes them critical to address. Even though one flaw requires admin access and the other requires valid credentials, attackers are finding ways in, especially in environments exposed to the internet. Make sure your systems are updated and properly secured.




Here is the article: https://thehackernews.com/2025/04/cisa-adds-actively-exploited-broadcom.html

Comments

Post a Comment

Popular posts from this blog

Week 2 U.S. DOJ seizes 4 domains that support Cybercrimes

  On May 27, 2025, law enforcement from around the world teamed up to take down four websites that were helping hackers keep their malware hidden from antivirus software. Led by the U.S. Department of Justice and supported by countries like the Netherlands, Finland, Germany, and Ukraine, the operation called Operation Endgame focused on sites like AvCheck[.]net and Cryptor[.]biz. These websites weren’t just shady. They offered services that made it easier for cybercriminals to test and tweak their malware so it could slip past security systems. One of the main sites, AvCheck, let users scan their files with dozens of antivirus engines, claiming to help them stay Fully UnDetected. But in reality, these tools were fueling a lot of malicious activity behind the scenes. To confirm this, investigators went undercover and bought access to these services. What they found was clear. The sites were being used to support cyberattacks.   This takedown also connects to bigger probl...
Read more

Week 10: Role of AI in Zero Trust

     Here’s what’s clear: Zero Trust is no longer just a buzzword it’s a must-have. According to a recent article from The Hacker News , more than 80% of organizations are planning to adopt Zero Trust by 2026, and AI is playing a massive role in making that possible.  In a Zero Trust model, nothing and no one gets automatic access not even internal users or known devices. Every login, every access request, every connection must be verified continuously. That creates a huge amount of data to process think device health, user behavior, location, app sensitivity, and more. That’s where AI steps in. The AI Behind the Curtain The article breaks down three types of AI helping make Zero Trust practical: Predictive AI (like machine learning) is all about analyzing behavior patterns and assigning risk scores in real time. It helps automate decisions like “should this user be allowed access right now?” Generative AI (like ChatGPT) can assist security analysts by summ...
Read more