Close Menu
    What's Hot

    Jay Clayton Faces Tough Questions in Hearing Over 2020 Election

    Football might be coming home — but Prince William is staying home (for now) – Live Updates

    Opinion | Is Dating a Colleague a Good Idea?

    Facebook X (Twitter) Instagram
    Trending
    • Jay Clayton Faces Tough Questions in Hearing Over 2020 Election
    • Football might be coming home — but Prince William is staying home (for now) – Live Updates
    • Opinion | Is Dating a Colleague a Good Idea?
    • War Risk for Businesses Will Mean Higher Prices No Matter What Happens
    • Google’s biggest clean power project is 40 miles north of xAI’s unpermitted gas power plant
    • SpaceX Falls Below I.P.O. Price of $135
    • ‘Buy now, pay later’ rules could exclude millions, warn consumer groups
    • Sprinklr: Slashed Growth Outlook Leaves Shares Deeply Discounted (NYSE:CXM)
    interluknewsinterluknews
    • Home
    • Business
      • Corporate News
      • Industry Insights
      • Startups & Entrepreneurship
      • Technology & Innovation
    • Economy
      • Economic Policy
      • Financial Analysis
      • Inflation & Interest Rates
      • Trade & Markets
    • Global
      • Conflicts & Security
      • Diplomacy
      • Global Trends
      • International Affairs
    • Lifestyle
      • Fashion
      • Food & Dining
      • Personal Development
      • Travel
    • Opinion
      • Columns
      • Editorials
      • Expert Opinions
      • Reader Voices
    • More
      • Politics
        • Elections
        • Government & Policy
        • International Relations
        • Political Analysis
      • Sports
        • Cricket
        • Football / Soccer
        • International Sports
        • Local Sports
      • Technology
        • Artificial Intelligence
        • Cybersecurity
        • Gadgets & Reviews
        • Tech News
      • South Africa News
    Facebook X (Twitter) Instagram
    interluknewsinterluknews
    Cybersecurity

    CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited

    adminBy adminMarch 10, 2026No Comments2 Mins Read
    Share Facebook Twitter Pinterest Copy Link Telegram LinkedIn Tumblr Email
    CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited
    Share
    Facebook Twitter LinkedIn Pinterest Email

    Ravie LakshmananMar 10, 2026Vulnerability / Enterprise Security

    CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited

    The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added three security flaws to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.

    The vulnerability list is as follows –

    • CVE-2021-22054 (CVSS score: 7.5) – A server-side request forgery (SSRF) vulnerability in Omnissa Workspace One UEM (formerly VMware Workspace One UEM) that could allow a malicious actor with network access to UEM to send requests without authentication and to gain access to sensitive information.
    • CVE-2025-26399 (CVSS score: 9.8) – A deserialization of untrusted data vulnerability in the AjaxProxy component of SolarWinds Web Help Desk that could allow an attacker to run commands on the host machine.
    • CVE-2026-1603 (CVSS score: 8.6) – An authentication bypass using an alternate path or channel vulnerability in Ivanti Endpoint Manager that could allow a remote unauthenticated attacker to leak specific stored credential data.
    Cybersecurity

    The addition of CVE-2025-26399 comes in the wake of reports from Microsoft and Huntress that threat actors are exploiting security flaws in SolarWinds Web Help Desk to obtain initial access. The activity is believed to be the work of the Warlock ransomware crew.

    CVE-2021-22054, on the other hand, was flagged by GreyNoise in March 2025 as being exploited in conjunction with several other SSRF vulnerabilities in other products as part of a coordinated campaign.

    There are currently no details on how CVE-2026-1603 is being weaponized in the wild. As of writing, Ivanti’s security bulletin has not been updated to reflect the exploitation status.

    To counter the risk posed by active threats, Federal Civilian Executive Branch (FCEB) agencies have been ordered to apply the fix for SolarWinds Web Help Desk by March 12, 2026, and the remaining two by March 23, 2026.

    “These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise,” CISA said.

    Actively CISA Exploited Flags Ivanti SolarWinds Vulnerabilities Workspace
    Follow on Google News Follow on Flipboard
    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email Copy Link
    Previous ArticleAlleged 28s gang boss ‘captured’ mega rail project – with Prasa’s ‘help’
    Next Article Dutch intelligence services warn of Russian hackers targeting Signal and WhatsApp
    admin
    • Website

    Related Posts

    SASE Has An AI Blind Spot. Inspecting Packets Is No Longer Enough.

    July 15, 2026

    Firefox, Chrome, Adobe, and VMware Updates Fix Multiple Critical Security Flaws

    July 15, 2026

    Cursor Flaw Lets Malicious Cloned Repositories Trigger Windows Code Execution

    July 15, 2026
    Leave A Reply Cancel Reply

    Demo
    Latest Posts

    Jay Clayton Faces Tough Questions in Hearing Over 2020 Election

    Football might be coming home — but Prince William is staying home (for now) – Live Updates

    Opinion | Is Dating a Colleague a Good Idea?

    War Risk for Businesses Will Mean Higher Prices No Matter What Happens

    Latest Posts

    Subscribe to News

    Get the latest sports news from NewsSite about world, sports and politics.

    Advertisement
    Demo

    We are a digital news platform delivering timely, accurate, and insightful coverage of politics, global affairs, business, economy, sports, and more. Our mission is to keep readers informed with reliable news, clear analysis, and stories that truly matter.
    We're social. Connect with us:

    Facebook X (Twitter) Instagram Pinterest YouTube

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    Type above and press Enter to search. Press Esc to cancel.

    Powered by
    ...
    ►
    Necessary cookies enable essential site features like secure log-ins and consent preference adjustments. They do not store personal data.
    None
    ►
    Functional cookies support features like content sharing on social media, collecting feedback, and enabling third-party tools.
    None
    ►
    Analytical cookies track visitor interactions, providing insights on metrics like visitor count, bounce rate, and traffic sources.
    None
    ►
    Advertisement cookies deliver personalized ads based on your previous visits and analyze the effectiveness of ad campaigns.
    None
    ►
    Unclassified cookies are cookies that we are in the process of classifying, together with the providers of individual cookies.
    None
    Powered by