CISA adds D-Link vulnerabilities to KEV Catalog

The Cybersecurity and Infrastructure Security Agency (CISA) has included three vulnerabilities related to D-Link devices in its Known Exploited Vulnerabilities (KEV) Catalog, following indications of active exploitation. This update holds particular relevance for IT leaders and security professionals, emphasizing the need for organizations to address these vulnerabilities promptly.

New Vulnerabilities Identified

The newly added vulnerabilities in the KEV Catalog include CVE-2020-25078 and CVE-2020-25079, which pertain to unspecified and command injection vulnerabilities, respectively, in D-Link's DCS-2530L and DCS-2670L devices. Additionally, CVE-2022-40799 also involves the D-Link DNR-322L device, concerning the download of code without an integrity check.

Impact on Federal and Private Sector

These vulnerabilities serve as common attack vectors for malicious actors, posing risks to both federal and private sector organizations. CISA's Binding Operational Directive (BOD) 22-01 mandates that Federal Civilian Executive Branch (FCEB) agencies remediate identified vulnerabilities by specified deadlines to safeguard their networks against current threats.

While the directive specifically applies to FCEB agencies, CISA advocates for all organizations to actively prioritize the remediation of KEV Catalog vulnerabilities to mitigate exposure to cyber threats. CISA will continue to update the catalog with new entries that meet established criteria.

Conclusion

This update from CISA highlights the ongoing necessity for organizations to maintain vigilance against known vulnerabilities, reinforcing the importance of timely remediation efforts. This overview provides a summary of critical updates in the original blog post, emphasizing the relevance of the new entries in the KEV Catalog.