Government ❯ Cybersecurity Policy ❯ CISA

Vulnerability Management

Binding Operational Directive 22-01 Known Exploited Vulnerabilities Binding Operational Directive

CISA Adds VMware Aria Operations/Tools Flaw to KEV, Sets Nov. 20 Patch Deadline for Feds

Reports of UNC5174 exploiting the bug since 2024 have heightened urgency for organizations to apply Broadcom’s fixes.

CISA Adds Two Actively Exploited DELMIA Apriso Flaws to KEV

CISA Adds Actively Exploited Adobe AEM Forms Flaw to KEV Catalog