CISA flags up actively exploited Google Chrome and Excel flaws

CISA's directive gives federal agencies until 23rd January to implement measures against these vulnerabilities

clock • 2 min read
CISA flags up actively exploited Google Chrome and Excel flaws
Image:

CISA flags up actively exploited Google Chrome and Excel flaws

The US Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities (KEV) catalogue to include two actively exploited bugs flaws found in Google Chrome and open-source Perl library.

These vulnerabilities, if left unaddressed, pose significant cybersecurity risks to users and organisations, the agency warned. The first vulnerability, identified as CVE-2023-7024, is a heap bu...

To continue reading this article...

Join Computing

  • Unlimited access to real-time news, analysis and opinion from the technology industry
  • Receive important and breaking news in our daily newsletter
  • Be the first to hear about our events and awards programmes
  • Join live member only interviews with IT leaders at the ‘IT Lounge’; your chance to ask your burning tech questions and have them answered
  • Access to the Computing Delta hub providing market intelligence and research
  • Receive our members-only newsletter with exclusive opinion pieces from senior IT Leaders

Join now

 

Already a Computing member?

Login

You may also like
Operation Cronos: NCA reveals details of LockBit affiliates

Threats and Risks

Operation has been crippled - for now

clock 22 February 2024 • 3 min read
Law enforcement takes down LockBit - updated

Security

NCA among the groups under 'Operation Cronos'

clock 20 February 2024 • 2 min read
Microsoft's chief security advisor joins Cybersecurity Festival 2024

Security

Sarah Armstrong-Smith will talk AI in security

clock 19 February 2024 • 1 min read

More on Threats and Risks

Operation Cronos: NCA reveals details of LockBit affiliates

Operation Cronos: NCA reveals details of LockBit affiliates

Operation has been crippled - for now

clock 22 February 2024 • 3 min read
Microsoft exposes state-backed hackers using AI tools for espionage

Microsoft exposes state-backed hackers using AI tools for espionage

Hackers linked to Russian military intelligence have been using LLMs to delve into satellite communication protocols relevant to military operations in Ukraine

clock 15 February 2024 • 3 min read
France uncovers massive Russian disinformation campaign

France uncovers massive Russian disinformation campaign

Dubbed 'Portal Kombat'

Vikki Davies
clock 14 February 2024 • 2 min read