CISA has retired ten emergency directives after addressing the vulnerabilities through the Known Exploited Vulnerabilities catalog and successful remediation efforts. These directives included patches for critical issues in Microsoft, VMware, F5, and Cisco products, reflecting the agencyβs active management of systemic cybersecurity risks. #CISA #KEV #MicrosoftVulnerabilities #Cisco #F5
Keypoints
- CISA retired ten emergency directives issued between 2019 and 2024 after successful mitigation.
- The directives targeted vulnerabilities exploited by threat actors and addressed via the KEV catalog.
- The KEV catalog sets deadlines, often three weeks, for federal agencies to patch known exploited vulnerabilities.
- Some directives were retired because their objectives were achieved or practices evolved, making them obsolete.
- The vulnerabilities patched include those affecting Microsoft, VMware, F5, and Cisco products.
Read More: https://therecord.media/cisa-sunsets-10-emergency-directives