CISA Active Exploits – June 2023

by Artie Kaye

The Cybersecurity and Infrastructure Agency (CISA) added a host of new exploits over the last two months which are must patch issues. While these instructions are meant for governmental agencies, it would be prudent to address them if they apply. Below are the CVE numbers, what products are affected, and official links the various companies have provided highlighting the problem or their solutions.

All links will open in a new browser tab or window.

Company	Affects	Patch or Workaround	CVE
Apache	Tomcat	https://tomcat.apache.org/security-9.html	CVE-2016-8735
Apple	iOS 15.7.6, iPadOS 15.7.6	https://support.apple.com/HT213765	CVE-2023-32409 CVE-2023-28204 CVE-2023-32373
	iOS 16.5 iPadOS 16.5	https://support.apple.com/HT213757
	macOS Ventura 13.4	https://support.apple.com/HT213758
	Safari 16.5	https://support.apple.com/HT213762
	tvOS 16.5	https://support.apple.com/HT213761
	watchOS 9.5	https://support.apple.com/HT213764
Barracuda Networks	Email Security Gateway Appliance	https://status.barracuda.com/incidents/34kx82j5n4q9	CVE-2023-2868
Cisco	IOS	https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20040827-telnet	CVE-2004-1464
	Multiple Products	https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160916-ikev1	CVE-2016-6415
Jenkins	Jenkins User Interface	https://www.jenkins.io/security/advisory/2015-11-11/	CVE-2015-5317
Linux	Linux Kernel	https://lkml.iu.edu/hypermail/linux/kernel/1609.1/02103.html https://lkml.iu.edu/hypermail/linux/kernel/1601.3/06474.html	CVE-2014-0196 CVE-2010-3904
Oracle	Java SE, JRockit	https://www.oracle.com/security-alerts/cpuapr2016v3.html	CVE-2016-3427
Progress	MOVEit Transfer	https://community.progress.com/s/article/MOVEit-Transfer-Critical-Vulnerability-31May2023	CVE-2023-34362
Red Hat	Polkit	https://bugzilla.redhat.com/show_bug.cgi?id=1961710	CVE-2021-3560
Ruckus Wireless	Multiple Products	https://support.ruckuswireless.com/security_bulletins/315	CVE-2023-25717
Samsung	Mobile Devices	https://security.samsungmobile.com/securityUpdate.smsb?year=2023&month=05	CVE-2023-21492
Zyxel	Multiple Products	https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-remote-command-injection-vulnerability-of-firewalls	CVE-2023-28771

All links open in new tab or window.