.png)
The Cybersecurity and Infrastructure Security Agency (CISA) has recently added three new vulnerabilities to their Known Exploited Vulnerabilities (KEV) catalog, indicating that they are actively being exploited by attackers. These vulnerabilities impact Fortinet FortiClient EMS, Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA), and Nice Linear eMerge E3-Series products.
What you need to know:
- Affected Products:
- Fortinet FortiClient EMS
- Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA)
- Nice Linear eMerge E3-Series
- CISA Designation: These vulnerabilities have been added to CISA's Known Exploited Vulnerabilities (KEV) catalog, meaning they are actively exploited by attackers.
- Federal Agency Patch Deadline: Federal agencies are mandated to patch these vulnerabilities by April 15, 2024.
Recommendations:
- It is recommended that all users and organizations using these products apply the available patches immediately to mitigate the risk of exploitation.
- For further information and mitigation steps, refer to the official advisories provided by the vendors:
- Fortinet FortiClient EMS: [link to Fortinet advisory]
- Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA): [link to Ivanti advisory]
- Nice Linear eMerge E3-Series: [link to Nice advisory]
Stay Informed:
- Subscribe to security advisories from Fortinet, Ivanti, and Nice to receive timely notifications about new vulnerabilities and security patches.
- Regularly review and update security configurations for your IT systems.
By following these recommendations, you can help protect your systems from these actively exploited vulnerabilities.
Share This Article To: