Hacking News CISA Issues Warning on Active Exploitation of ZK Java Web Framework Vulnerability

Hacking News CISA Issues Warning on Active Exploitation of ZK Java Web Framework Vulnerability - Printable Version

+- (https://hackmyride.com/forum)
+-- Forum: Automotive Hacking (https://hackmyride.com/forum/forumdisplay.php?fid=211)
+--- Forum: News (https://hackmyride.com/forum/forumdisplay.php?fid=278)
+---- Forum: The Hacker News (https://hackmyride.com/forum/forumdisplay.php?fid=279)
+---- Thread: Hacking News CISA Issues Warning on Active Exploitation of ZK Java Web Framework Vulnerability (/showthread.php?tid=787)

CISA Issues Warning on Active Exploitation of ZK Java Web Framework Vulnerability - The Hacker News - 03-01-2023

CISA Issues Warning on Active Exploitation of ZK Java Web Framework Vulnerability

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity flaw affecting the ZK Framework to its Known Exploited Vulnerabilities (KEV) catalog based on evidence of active exploitation.
Tracked as CVE-2022-36537 (CVSS score: 7.5), the issue impacts ZK Framework versions 9.6.1, 9.6.0.1, 9.5.1.3, 9.0.1.2, and 8.6.4.1, and allows threat actors to retrieve sensitive

https://thehackernews.com/2023/02/cisa-issues-warning-on-active.html