Open Nav
Sign Up

Critical Alert: CISA Adds High-Risk Vulnerabilities to Exploited Catalog (CVE-2023-6549, CVE-2023-6548, and CVE-2024-0519)

Bar Refael

January 18, 2024

The Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities Catalog, adding three vulnerabilities that have been actively exploited. This update is a crucial development for cybersecurity, as these vulnerabilities are commonly targeted by cybercriminals and pose a significant threat, particularly to government networks and the broader federal enterprise.

Details of Newly Added Vulnerabilities:

  • CVE-2023-6549 (Citrix NetScaler ADC and Gateway): This vulnerability is a buffer overflow issue in Citrix NetScaler ADC and Gateway. Buffer overflow vulnerabilities occur when more data is input into a buffer (a temporary data storage area) than it can hold, leading to overflows that can overwrite adjacent memory, resulting in system crashes, data corruption, or code execution.
  • CVE-2023-6548 (Citrix NetScaler ADC and Gateway): This is a code injection vulnerability in the same Citrix products. Code injection attacks involve the insertion of malicious code into a program, which is then executed by the system. Such vulnerabilities can lead to unauthorized access, data theft, and potentially full system control by an attacker.
  • CVE-2024-0519 (Google Chromium V8 Engine): An out-of-bounds memory access issue in Google’s Chromium V8 JavaScript engine. This vulnerability can be exploited to access unauthorized memory spaces, leading to sensitive data exposure, system crashes, or even providing a foothold for further malicious activities.

Urgency and Impact:

  • Immediate Threats: These vulnerabilities are currently being exploited, meaning attackers are actively using them to breach systems. Delays in addressing these issues can lead to severe consequences, including data breaches, financial loss, and significant damage to organizational reputation.
  • Past Incidents: Similar vulnerabilities have led to widespread cyber incidents in the past, underscoring the potential for widespread disruption and harm.

Binding Operational Directive (BOD) 22-01 Context:

  • BOD 22-01 established the Known Exploited Vulnerabilities Catalog as a key tool in identifying and mitigating vulnerabilities that pose significant risks, especially to federal networks.
  • It mandates Federal Civilian Executive Branch (FCEB) agencies to address these vulnerabilities promptly, ensuring network protection against prevalent cyber threats.
  • The directive, while specific to FCEB agencies, sets a benchmark in vulnerability management that is advisable for all organizations to follow.

OP Innovate’s Recommendations:

  • Immediate Review and Remediation: Organizations should review their systems for these vulnerabilities and prioritize their remediation.
  • Enhanced Vulnerability Management Practices: Incorporate a proactive approach to regularly check for and address vulnerabilities, especially those listed in CISA’s catalog.
  • Stay Updated: Keep abreast of updates from CISA and other cybersecurity entities to respond promptly to emerging threats.

The addition of these vulnerabilities to CISA’s catalog reflects the dynamic and challenging nature of cybersecurity. Vigilance and proactive measures are essential in protecting against these and other vulnerabilities, underscoring the need for comprehensive cybersecurity strategies.

Stay informed and secure,

OP Innovate Cybersecurity Team

Resources highlights

Critical Cisco ISE Vulnerabilities Lead to Unauthenticated RCE (CVE-2025-20281 & CVE-2025-20282)

On June 25, 2025, Cisco disclosed and patched two critical remote code execution (RCE) vulnerabilities: CVE-2025-20281 and CVE-2025-20282, affecting its widely deployed Identity Services Engine…

Read more >

CVE-2025-20281 & CVE-2025-20282

Critical Vulnerability in MegaRAC BMC Added to CISA’s KEV: CVE-2024-54085

On June 25, 2025, CISA added CVE‑2024‑54085, a critical authentication bypass vulnerability in the MegaRAC SPx Baseboard Management Controller (BMC) firmware, to its Known Exploited…

Read more >

CVE-2024-54085

‘UMBRELLA STAND’ Malware Targets Fortinet FortiGate Firewalls

‘UMBRELLA STAND’ Malware Targets Fortinet FortiGate Firewalls The UK’s National Cyber Security Centre (NCSC) has issued an alert regarding a sophisticated malware campaign dubbed “UMBRELLA…

Read more >

umbrella stand fortinet

CVE-2025-49144: Privilege Escalation in Notepad++ Installer Enables Full SYSTEM Access

A critical local privilege escalation vulnerability in the Notepad++ v8.8.1 installer allows attackers to escalate to NT AUTHORITY\SYSTEM using binary planting techniques. Tracked as CVE-2025-49144,…

Read more >

CVE-2025-49144

Our Red Team’s Favorite Penetration Testing Tools in 2025 (And How We Use Them)

When it comes to red team operations, the tools you choose can make or break the engagement. From initial reconnaissance to post-exploitation, having a streamlined,…

Read more >

pentesting tools - op

New Linux Vulnerabilities (CVE-2025-6018 & CVE-2025-6019) Enable Full Root Access in Seconds

Security researchers have uncovered a critical privilege escalation chain in major Linux distributions that allows any local user with a session (SSH or GUI) to…

Read more >

CVE-2025-6018, CVE-2025-6019
Under Cyber Attack?

Fill out the form and we will contact you immediately.