**CISA**: [CISA Adds Four Known Exploited Vulnerabilities to Catalog](https://www.cisa.gov/news-events/alerts/2025/02/11/cisa-adds-four-known-exploited-vulnerabilities-catalog )<li><a href="https://www.cve.org/CVERecord?id=CVE-2025-21418"; target="_blank" rel="nofollow noopener">CVE-2025-21418</a> (7.8 high) Microsoft Windows Ancillary Function Driver for WinSock Heap-Based Buffer Overflow Vulnerability</li><li><a href="https://www.cve.org/CVERecord?id=CVE-2025-21391"; target="_blank" rel="nofollow noopener">CVE-2025-21391</a> (7.1 high) Microsoft Windows Storage Link Following Vulnerability</li><li><a href="https://www.cve.org/CVERecord?id=CVE-2024-40890"; target="_blank" rel="nofollow noopener">CVE-2024-40890</a> (8.8 high) Zyxel DSL CPE OS Command Injection Vulnerability</li><li><a href="https://www.cve.org/CVERecord?id=CVE-2024-40891"; target="_blank" rel="nofollow noopener">CVE-2024-40891</a> (8.8 high) Zyxel DSL CPE OS Command Injection Vulnerability</li>
The Zyxel stuff is not new, but since the Microsoft zero-days are part of #PatchTuesday, I'm including them in this conversation.
#cisa #kev #cisakev #KnownExploitedVulnerabilitiesCatalog #vulnerability #zeroday #eitw #activeexploitation #infosec #cybersecurity #cve
Not Simon 🐐
npub14g…xznd6
2025-02-11 19:21:23 UTC
in reply to nevent1q…49d9
Author Public Key
npub14g0mj0fmn0sepfuhp2wupyk7d8xyz7rezpmrx2gfsav9vxlwxypq4xznd6Seen on
wss://relay.momostr.pinkPublished at
2025-02-11 19:21:23 UTCEvent JSON
{
"id": "3d491a06cc645ec5fdfdb98a76e3043f53a488b913d36b83bc9c2a6672aed8b5",
"pubkey": "aa1fb93d3b9be190a7970a9dc092de69cc41787910763329098758561bee3102",
"created_at": 1739301683,
"kind": 1,
"tags": [
[
"e",
"31fe37ea949b57016a89374d925f929ecde46d422c5a8766798f44cca5e9704a",
"",
"root",
"aa1fb93d3b9be190a7970a9dc092de69cc41787910763329098758561bee3102"
],
[
"t",
"eitw"
],
[
"t",
"vulnerability"
],
[
"t",
"patchtuesday"
],
[
"proxy",
"https://infosec.exchange/@screaminggoat/113986875105156497",
"web"
],
[
"t",
"zeroday"
],
[
"e",
"7f2d64457ef9ecfff6ca75ee85afc3989e95fd19d28f38592ae716a7de94cd55",
"",
"reply",
"aa1fb93d3b9be190a7970a9dc092de69cc41787910763329098758561bee3102"
],
[
"t",
"activeexploitation"
],
[
"t",
"cve"
],
[
"t",
"cisa"
],
[
"t",
"cisakev"
],
[
"t",
"infosec"
],
[
"p",
"aa1fb93d3b9be190a7970a9dc092de69cc41787910763329098758561bee3102"
],
[
"t",
"knownexploitedvulnerabilitiescatalog"
],
[
"t",
"cybersecurity"
],
[
"t",
"kev"
],
[
"proxy",
"https://infosec.exchange/users/screaminggoat/statuses/113986875105156497",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://infosec.exchange/users/screaminggoat/statuses/113986875105156497",
"pink.momostr"
],
[
"-"
]
],
"content": "**CISA**: [CISA Adds Four Known Exploited Vulnerabilities to Catalog](https://www.cisa.gov/news-events/alerts/2025/02/11/cisa-adds-four-known-exploited-vulnerabilities-catalog )\u003cli\u003e\u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-21418\" target=\"_blank\" rel=\"nofollow noopener\"\u003eCVE-2025-21418\u003c/a\u003e (7.8 high) Microsoft Windows Ancillary Function Driver for WinSock Heap-Based Buffer Overflow Vulnerability\u003c/li\u003e\u003cli\u003e\u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-21391\" target=\"_blank\" rel=\"nofollow noopener\"\u003eCVE-2025-21391\u003c/a\u003e (7.1 high) Microsoft Windows Storage Link Following Vulnerability\u003c/li\u003e\u003cli\u003e\u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-40890\" target=\"_blank\" rel=\"nofollow noopener\"\u003eCVE-2024-40890\u003c/a\u003e (8.8 high) Zyxel DSL CPE OS Command Injection Vulnerability\u003c/li\u003e\u003cli\u003e\u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2024-40891\" target=\"_blank\" rel=\"nofollow noopener\"\u003eCVE-2024-40891\u003c/a\u003e (8.8 high) Zyxel DSL CPE OS Command Injection Vulnerability\u003c/li\u003e\n\nThe Zyxel stuff is not new, but since the Microsoft zero-days are part of #PatchTuesday, I'm including them in this conversation.\n\n#cisa #kev #cisakev #KnownExploitedVulnerabilitiesCatalog #vulnerability #zeroday #eitw #activeexploitation #infosec #cybersecurity #cve",
"sig": "18fe20049dcdf21def41355817e22013fa16e167aed2687688b9de1bab608320fe51d9c1418e8c27c39d728bec8a37c5045db02d2822a18cd4da527664bd422f"
}