Cisa
The latest Cisa coverage — news, analysis, and updates from the WindowsNews.AI desk.
CISA Adds Gladinet LFI & CWP Command Injection to KEV Catalog: Critical Security Alert
The Cybersecurity and Infrastructure Security Agency (CISA) has quietly expanded its Known Exploited Vulnerabilities (KEV) Catalog with two new actively exploited flaws that demand immediate...
CISA ICS Security Advisories: Critical Patches for ABB, Siemens, Carrier Systems
The Cybersecurity and Infrastructure Security Agency (CISA) has issued five critical industrial control system (ICS) advisories targeting vulnerabilities in widely deployed equipment from major...
CISA and NSA warn active exploits target WSUS and Exchange supply chain risk.
The Cybersecurity and Infrastructure Security Agency (CISA) and National Security Agency (NSA) have issued coordinated, high-urgency guidance for organizations running on-premises or hybrid Microsoft...
CVE-2025-12357: Critical SLAC Vulnerability Threatens EV Charging Security
A newly discovered vulnerability in the ISO 15118 electric vehicle charging protocol has security researchers and EV manufacturers on high alert. Designated CVE-2025-12357, this critical weakness in...
Healthcare ASP.NET Security Flaws Expose Sensitive Data: Patch Now
A critical security vulnerability in Vertikal Systems' Hospital Manager Backend Services has exposed healthcare organizations to significant data breach risks, with two information-disclosure flaws...
CISA Mandates Urgent WSUS Patch for CVE-2025-59287 Critical Vulnerability
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an emergency directive requiring federal agencies to immediately patch a critical Windows Server Update Services (WSUS)...
Critical WSUS RCE Vulnerability CVE-2025-59287: Patch Immediately as Attacks Escalate
Federal agencies and private-sector IT teams were put on high alert this week after the Cybersecurity and Infrastructure Security Agency (CISA) added a critical Windows Server Update Services (WSUS)...
CISA Warns of Critical SSH Bypass Vulnerability in RaiseComm RAX701-GC Devices
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical security advisory warning about a severe SSH authentication bypass vulnerability affecting RaiseComm RAX701-GC...
CISA Urges Immediate Action: Critical Adobe AEM Forms Vulnerability Actively Exploited
The Cybersecurity and Infrastructure Security Agency (CISA) has escalated the threat level for a critical Adobe vulnerability by adding CVE-2025-54253 to its Known Exploited Vulnerabilities (KEV)...
CISA Alert: Dingtian DT-R002 ICS Vulnerability with CVSS 8.7 Rating
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical security advisory for the Dingtian DT-R002 industrial relay board, highlighting severe credential exposure...
CISA ICS Advisories: Schneider Uni Telway & Optigo Vulnerabilities Exposed
The Cybersecurity and Infrastructure Security Agency (CISA) has issued two critical Industrial Control Systems (ICS) advisories targeting vulnerabilities in Schneider Electric's Uni-Telway driver and...
CISA ICS Security Advisories October 2025: Critical Windows OT Defenses
The Cybersecurity and Infrastructure Security Agency (CISA) has released two critical Industrial Control Systems (ICS) advisories on October 2, 2025, highlighting escalating threats to industrial...