Ethical Hacking News
U.S. CISA adds SonicWall and Microsoft flaws to its Known Exploited Vulnerabilities catalog: a growing concern for cybersecurity. The addition of these vulnerabilities highlights the need for continuous monitoring and patching to prevent attacks and protect networks. Experts recommend that organizations prioritize robust cybersecurity measures, including regular software updates, network segmentation, and incident response planning. Stay informed about the latest developments in cybersecurity to take proactive steps against cyber threats.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, bringing the total number of actively exploited vulnerabilities to 621. The new vulnerabilities are SonicWall SMA1000 Appliances Server-Side Request Forgery Vulnerability (CVE-2026-15409), Microsoft Active Directory Federation Services Insufficient Granularity of Access Control Vulnerability (CVE-2026-56155), and Microsoft SharePoint Server Missing Authentication for Critical Function Vulnerability (CVE-2026-56164). The vulnerabilities pose a significant threat to the security of various networks, including those in government agencies, private organizations, and educational institutions. Experts recommend that organizations prioritize the adoption of robust cybersecurity measures, including regular software updates, network segmentation, and incident response planning.
U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, bringing the total number of actively exploited vulnerabilities to 621 in a single month. The latest additions are SonicWall SMA1000 Appliances Server-Side Request Forgery Vulnerability (CVE-2026-15409) and Microsoft Active Directory Federation Services Insufficient Granularity of Access Control Vulnerability (CVE-2026-56155), as well as Microsoft SharePoint Server Missing Authentication for Critical Function Vulnerability (CVE-2026-56164). These vulnerabilities pose a significant threat to the security of various networks, including those in government agencies, private organizations, and educational institutions.
The SonicWall SMA1000 Appliances vulnerability is particularly concerning, as it can be exploited remotely without authentication. This means that an attacker could potentially cause the appliance to make requests to unintended locations, leading to a range of potential consequences, from data breaches to system compromise. The Microsoft Active Directory Federation Services vulnerability also poses a significant risk, as it allows for arbitrary code execution under certain conditions.
The addition of these vulnerabilities to the KEV catalog highlights the growing concern for cybersecurity in the United States and beyond. According to the Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities, federal agencies have a deadline to address the identified vulnerabilities by July 17, 2026, except for CVE-2026-56155, which must be addressed by July 28, 2026. Private organizations are also urged to review the catalog and address the vulnerabilities in their infrastructure.
The sheer number of actively exploited vulnerabilities in a single month is alarming, with 621 CVEs fixed in Microsoft's July 2026 Patch Tuesday security updates. This highlights the need for continuous monitoring and patching of vulnerabilities to prevent attacks and protect networks. Experts recommend that organizations prioritize the adoption of robust cybersecurity measures, including regular software updates, network segmentation, and incident response planning.
In related news, the U.S. Treasury has imposed sanctions on a VPN provider and cryptor seller behind billions in ransomware losses, while the EU has targeted FSB-linked hackers in new sanctions over cyber sabotage. The Dutch nationals suspected in the Odido hack that exposed six million customers have also been added to the list of wanted individuals. Additionally, Australia alerts organizations to ongoing CMS exploitation attacks, while Ryuk ransomware member pleads guilty over attacks on U.S. organizations.
The increasing number of high-profile vulnerabilities and attacks highlights the need for a coordinated response to address the growing threat of cyberattacks. By staying informed about the latest developments in cybersecurity, individuals, organizations, and governments can take proactive steps to protect themselves against these threats.
Related Information:
https://www.ethicalhackingnews.com/articles/US-CISA-Adds-SonicWall-and-Microsoft-Flaws-to-Known-Exploited-Vulnerabilities-Catalog-A-Growing-Concern-for-Cybersecurity-ehn.shtml
https://securityaffairs.com/195383/security/u-s-cisa-adds-sonicwall-and-microsoft-flaws-to-its-known-exploited-vulnerabilities-catalog.html
https://nvd.nist.gov/vuln/detail/CVE-2026-15409
https://www.cvedetails.com/cve/CVE-2026-15409/
https://nvd.nist.gov/vuln/detail/CVE-2026-56155
https://www.cvedetails.com/cve/CVE-2026-56155/
https://nvd.nist.gov/vuln/detail/CVE-2026-56164
https://www.cvedetails.com/cve/CVE-2026-56164/
Published: Wed Jul 15 07:55:12 2026 by llama3.2 3B Q4_K_M