The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two vulnerabilities affecting Microsoft Office and Hewlett Packard Enterprise (HPE) OneView to its Known Exploited Vulnerabilities (KEV) catalog due to evidence of active exploitation. The first vulnerability, CVE-2009-0556, has a CVSS score of 8.8 and is a code injection vulnerability in Microsoft Office. CISA’s inclusion of these flaws highlights the urgency for organizations to address these security issues promptly. Users are advised to implement necessary updates and mitigations to protect their systems.
Loading PerspectiveSplit analysis...
