The Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities Catalog with a new entry: CVE-2023-29360, a vulnerability in Microsoft Streaming Service related to untrusted pointer dereference. This addition is based on evidence of active exploitation, making it a significant concern for the federal enterprise and beyond.
Key Points:
- Vulnerability Details: CVE-2023-29360 is a vulnerability in Microsoft Streaming Service that involves untrusted pointer dereference, which can be exploited by malicious actors to execute arbitrary code or cause a denial of service.
- Binding Operational Directive (BOD) 22-01: This directive established the Known Exploited Vulnerabilities Catalog as a living list of CVEs posing significant risks. It mandates Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by specified due dates to protect against active threats.
- Recommendation for All Organizations: While BOD 22-01 specifically targets FCEB agencies, CISA strongly advises all organizations to prioritize the timely remediation of vulnerabilities listed in the catalog as part of their vulnerability management practices.
Implications:
- Increased Risk of Cyber Attacks: The active exploitation of CVE-2023-29360 poses a heightened risk to organizations, particularly those within the federal enterprise.
- Urgent Need for Remediation: Timely patching and mitigation efforts are crucial to reduce the exposure to this and other cataloged vulnerabilities.
Recommendations:
- Vulnerability Patching: Organizations should promptly apply available patches or mitigations for CVE-2023-29360 to prevent potential exploitation.
- Regular Vulnerability Assessments: Conduct regular assessments to identify and address vulnerabilities, prioritizing those known to be exploited.
- Adherence to BOD 22-01: FCEB agencies must comply with the directive’s requirements, while other organizations are encouraged to follow suit for enhanced security.
Conclusion:
The addition of CVE-2023-29360 to CISA’s Known Exploited Vulnerabilities Catalog underscores the importance of vigilant vulnerability management and timely remediation. Organizations are urged to take proactive measures to mitigate the risks associated with this and other known exploited vulnerabilities to safeguard their networks and data against cyber threats.
