From f0e8cc77b47620268e7f0b359c1f1d93bc9c7dca Mon Sep 17 00:00:00 2001 From: GitHub Actions Date: Thu, 1 Feb 2024 04:45:37 +0000 Subject: [PATCH] Format markdown files --- ...Added-Known-Exploited-Vulnerabilities-to-Catalog.md | 10 +++------- 1 file changed, 3 insertions(+), 7 deletions(-) diff --git a/docs/advisories/20240201001-CISA-Added-Known-Exploited-Vulnerabilities-to-Catalog.md b/docs/advisories/20240201001-CISA-Added-Known-Exploited-Vulnerabilities-to-Catalog.md index 31e5cb6c..8f4acd64 100644 --- a/docs/advisories/20240201001-CISA-Added-Known-Exploited-Vulnerabilities-to-Catalog.md +++ b/docs/advisories/20240201001-CISA-Added-Known-Exploited-Vulnerabilities-to-Catalog.md @@ -6,24 +6,20 @@ CISA has added new vulnerabilities to itsĀ [Known Exploited Vulnerabilities Cata ## What is vulnerable? -| Product(s) Affected | CVE | Severity | CVSS | -| ---------------------- | ------------------------------------------------------------------------------- | -------------------------------- | ---- | +| Product(s) Affected | CVE | Severity | CVSS | +| ------------------------------------------------------------- | ----------------------------------------------------------------- | -------- | ---- | | Apple Multiple Products Improper Authentication Vulnerability | [CVE-2022-48618](https://nvd.nist.gov/vuln/detail/CVE-2022-48618) | **High** | 7.8 | | Ivanti Connect Secure, Policy Secure, and Neurons Server-Side | [CVE-2024-21893](https://nvd.nist.gov/vuln/detail/CVE-2024-21893) | **High** | 8.2 | ## What has been observed? -CISA added these vulnerabilties in their [Known Exploited Vulnerabilties](https://www.cisa.gov/known-exploited-vulnerabilities-catalog) catalog on *2024-01-31*. +CISA added these vulnerabilties in their [Known Exploited Vulnerabilties](https://www.cisa.gov/known-exploited-vulnerabilities-catalog) catalog on *2024-01-31*. ## Recommendation The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe (refer [Patch Management](../guidelines/patch-management.md)): - ### Additional Resources - - [CISA Adds One Known Exploited Vulnerability to Catalog- Apple](https://www.cisa.gov/news-events/alerts/2024/01/31/cisa-adds-one-known-exploited-vulnerability-catalog) - [CISA Adds One Known Exploited Vulnerability to Catalog - Ivanti](https://www.cisa.gov/news-events/alerts/2024/01/31/cisa-adds-one-known-exploited-vulnerability-catalog-0) - -