The U.S. IT security agency CISA has added five new vulnerabilities to the “Known Exploited Vulnerabilities” catalog. According to the report, attackers are currently attacking vulnerabilities in products from Apple, Kentico, Microsoft and Oracle.
One of the vulnerabilities that the CISA attacked as known dates back to 2023 and affects several Apple products. The CVE entry does not give details, but Apple reports there that the problem has been corrected by improved boundary checks – this sounds like a potential buffer overflow that Apple has corrected in tvOS 15.6, watchOS 8.7, iOS and iPadOS 15.6, macOS 12.5 and Safari 15.6 (CVE-2022-48503, CVSS 8.8, risk “high“).
Young vulnerabilities also in the sights
In March of this year, the manufacturer plugged critical security vulnerabilities in the Kentico Xperience environment that allowed attackers to bypass authentication via the Staging Sync Server (CVE-2025-2746, CVE-2025-2747, CVSS 9.8, risk “critical“). Attackers are now targeting both vulnerabilities. It also refers to a vulnerability in the Windows SMB that allows logged-in attackers to escalate their privileges over the network – and which Microsoft already closed with an update in June (CVE-2025-33073, CVSS 8.8, risk “high“).
Finally, attacks on the security vulnerability in the Oracle E-Business Suite, which was closed last week with an emergency update, have now also been observed. It is a CrossServer Side Request Forgery (SSRF), which, according to Oracle, can be exploited from the network without prior authentication (CVE-2025-61884. CVSS 7.5, risk “high“). It allows access to sensitive information.
IT managers should download and install the available software updates quickly to minimize the attack surface. As usual, CISA does not provide any details about the attacks, so there are currently no indicators of compromise (IOCs) available to detect them.
Discover more from Apple News
Subscribe to get the latest posts sent to your email.