The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added multiple vulnerabilities affecting products from Zyxel, North Grid Proself, ProjectSend, and CyberPanel to its Known Exploited Vulnerabilities (KEV) catalog due to evidence of active exploitation. These include CVE-2024-51378, CVE-2023-45727, CVE-2024-11680, and CVE-2024-11667, linked to espionage and ransomware campaigns.

Separately, JPCERT/CC has warned of attacks exploiting three vulnerabilities in I-O DATA routers (CVE-2024-45841, CVE-2024-47133, CVE-2024-52564). While a patch for CVE-2024-52564 is available, fixes for others will be released on December 18, 2024. In the interim, users are advised to disable remote management and use secure credentials.

Federal agencies have until December 25, 2024, to remediate these vulnerabilities to protect their networks.

‍