<ul><li>U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds SonicWall SMA100 and Apache HTTP Server flaws to its Known Exploited Vulnerabilities catalog.</li><li>CISA also added Qualitia Active! Mail, Broadcom Brocade Fabric OS, and Commvault Web Server flaws to its Known Exploited Vulnerabilities list.</li><li>CVE-2024-38475 is an Apache HTTP Server vulnerability allowing URL mapping to permitted file locations. CVE-2023-44221 is a SonicWall SMA100 vulnerability enabling OS Command Injection.</li><li>SonicWall has addressed these flaws with firmware updates for affected devices, and organizations are advised to review and address vulnerabilities in their infrastructure.</li></ul>

U.S. CISA adds SonicWall SMA100 and Apache HTTP Server flaws to its Known Exploited Vulnerabilities catalog

Discover more