I found and disclosed CVE-2014-8361 almost a DECADE ago and it’s STILL being actively exploited in IoT botnets. That bug just refuses to die. Kind of a weird honor to have a vuln of mine show up on the CISA KEV list, but I’m definitely gonna be putting that on a sash or something. Stop using vulnerable routers!

#CISA #KEV #realtek #miniIGD

Big day for the #KEV from #CISA today. Added 8 new-to-KEV vulnerabilities:

CVE-2022-22265 #Samsung Mobile #NPU Driver
CVE-2014-8361 #Realtek SDK #miniigd
CVE-2017-6884 #Zyxel SOHO Router
CVE-2021-3129 #Laravel #Ignition
CVE-2022-31459, CVE-2022-31461, CVE-2022-31462, CVE-2022-31463 #OwlLabs #MeetingOwl

These all have been recently exploited in the wild, so if you haven't gotten around to patching or decommissioning these techs yet, today is a good day to get started.

https://cisa.gov/kev