CISA has retired 10 Emergency Directives after successfully completing the necessary actions or integrating them into Binding Operational Directive 22-01. This marks the largest number of directives CISA has closed simultaneously, emphasizing enhanced vulnerability mitigation efforts. #CISA #BindingOperationalDirective22-01
Keypoints
- CISA issued and later retired 10 Emergency Directives from 2019 to 2024.
- All actions mandated by these directives have been completed or integrated into BOD 22-01.
- Emergency Directives target urgent vulnerabilities, with timelines adjusted based on threat severity.
- BOD 22-01 utilizes the KEV catalog for prioritizing patching of exploited flaws.
- Some vulnerabilities, like CVE-2025-20333, required immediate patching within one day due to high risk.