> TritonInfoSec News
Home / Apr 30, 2026 / Story
0
#5 BleepingComputer general April 29, 2026 at 10:29 UTC

CISA orders feds to patch Windows flaw exploited as zero-day

By Sergiu Gatlan

AI Summary

CISA added CVE-2024-1708 (ConnectWise ScreenConnect path traversal) and an actively exploited Windows vulnerability to its Known Exploited Vulnerabilities catalog, ordering federal agencies to patch these zero-day flaws. Both vulnerabilities are being actively exploited in the wild according to CISA's threat intelligence.

Read full article → https://www.bleepingcomputer.com/news/security/cis…

Relevance score: 83.0/100

# More from April 30

  1. 1
    Claude Mythos Has Found 271 Zero-Days in Firefox Schneier on Security
  2. 2
    Official SAP npm packages compromised to steal credentials BleepingComputer
  3. 3
    GitHub fixes RCE flaw that gave access to millions of private repos BleepingComputer
  4. 4
    cPanel, WHM emergency update fixes critical auth bypass bug BleepingComputer
  5. 6
    Hackers are exploiting a critical LiteLLM pre-auth SQLi flaw BleepingComputer
  6. 7
    Popular WordPress redirect plugin hid dormant backdoor for years BleepingComputer
  7. 8
    Broken VECT 2.0 ransomware acts as a data wiper for large files BleepingComputer
  8. 9
    Hackers arrested for hijacking and selling 610,000 Roblox accounts BleepingComputer
  9. 10
    AI Finds 38 Security Flaws in Electronic Health Record Platform Dark Reading