Print - 【Vulnerability Alert】CISA Added 7 Known Exploited Vulnerabilities to the KEV Catalog (2026/06/08

【Vulnerability Alert】CISA Added 7 Known Exploited Vulnerabilities to the KEV Catalog (2026/06/08–2026/06/14)

publish date : 2026-06-22 update date : 2026-06-22

Source: Ministry of education information & communication security contingency platform

"" "" ""


Publication Number	TACERT-ANA-2026061601061818	Publication Time	2026-06-16 13:28:19
Incident Type	ANA-Vulnerability Alert	Discovery Time	2026-06-16 13:28:19
Impact Level	Low
[Subject] 【Vulnerability Alert】CISA Added 7 Known Exploited Vulnerabilities to the KEV Catalog (2026/06/08–2026/06/14)
[Content] Forwarded from TWCERTCC Security Advisory TWCERTCC-200-202606-00000011 1.【CVE-2026-42271】BerriAI LiteLLM Command Injection Vulnerability (CVSS v3.1: 8.8) 【Whether exploited by ransomware: Unknown】 BerriAI LiteLLM has a command injection vulnerability, which may allow any authenticated user, including users who only hold low-privileged internal user keys, to execute arbitrary commands on the host. 【Affected Platform】Please refer to the affected versions listed by the official source https://github.com/BerriAI/litellm/security/advisories/GHSA-v4p8-mg3p-g94g 2.【CVE-2026-50751】Check Point Security Gateway Improper Authentication Vulnerability (CVSS v3.1: 9.3) 【Whether exploited by ransomware: Known】 Check Point Security Gateway has an improper authentication vulnerability in the IKEv1 key exchange mechanism, which may allow an unauthenticated remote attacker to bypass the authentication mechanism and establish a remote access VPN connection without possessing a valid user password. 【Affected Platform】Please refer to the affected versions listed by the official source https://support.checkpoint.com/results/sk/sk185033 3.【CVE-2026-11645】Google Chromium V8 Out-of-Bounds Read and Write Vulnerability (CVSS v3.1: 8.8) 【Whether exploited by ransomware: Unknown】 Google Chromium V8 has an out-of-bounds read and write vulnerability. A remote attacker may execute arbitrary code within the sandbox through a specially crafted HTML page. This vulnerability may affect multiple web browsers using the Chromium engine, including but not limited to Google Chrome, Microsoft Edge, and Opera. 【Affected Platform】Please refer to the affected versions listed by the official source https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html 4.【CVE-2026-7473】Arista Extensible Operating System Incomplete Comparison with Missing Factors Vulnerability (CVSS v3.1: 5.8) 【Whether exploited by ransomware: Unknown】 Arista Extensible Operating System has an Incomplete Comparison with Missing Factors vulnerability. When a switch receives an unexpected tunnel packet whose destination IP address matches its configured decapsulation IP address, it may incorrectly perform decapsulation and forward the packet, thereby resulting in unexpected traffic handling behavior. 【Affected Platform】Please refer to the affected versions listed by the official source https://www.arista.com/en/support/advisories-notices/security-advisory/24005-security-advisory-0137 5.【CVE-2026-20245】Cisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnerability (CVSS v3.1: 7.8) 【Whether exploited by ransomware: Unknown】 Cisco Catalyst SD-WAN Manager has an Improper Encoding or Escaping of Output vulnerability. This vulnerability may allow an authenticated local attacker to execute arbitrary commands with root privileges by providing a specially crafted file to an affected system. 【Affected Platform】Please refer to the affected versions listed by the official source https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-privesc-4uxFrdzx 6.CVE-2026-10520】Ivanti Sentry OS Command Injection Vulnerability (CVSS v3.1: 10.0) 【Whether exploited by ransomware: Unknown】 Ivanti Sentry has an operating system command injection vulnerability, which may allow an unauthenticated remote user to execute remote code with root privileges. When the Sentry appliance is in an unmanaged state and its endpoints are accessible from an external network, an attacker may successfully exploit this vulnerability. If mTLS is used together with EPMM, or HTTPS access is restricted through Neurons for MDM, external attackers can be prevented from accessing the relevant interfaces. 【Affected Platform】Please refer to the affected versions listed by the official source https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-Sentry-CVE-2026-10520-CVE-2026-10523 7.【CVE-2026-35273】Oracle PeopleSoft Enterprise PeopleTools Missing Authentication for Critical Function Vulnerability (CVSS v3.1: 9.8) 【Whether exploited by ransomware: Known】 Oracle PeopleSoft Enterprise PeopleTools has a Missing Authentication for Critical Function vulnerability. An unauthenticated attacker may exploit this vulnerability to gain control of PeopleSoft Enterprise PeopleTools. 【Affected Platform】Please refer to the affected versions listed by the official source https://www.oracle.com/security-alerts/alert-cve-2026-35273.html Information Sharing Level: WHITE (the intelligence content is information that may be publicly disclosed)
[Affected Platform] For details, please refer to the Affected Platform section in the Content Description field.
[Recommended Actions] 1.【CVE-2026-42271】The official source has released a fix update for the vulnerability. Please update to the relevant version. https://github.com/BerriAI/litellm/security/advisories/GHSA-v4p8-mg3p-g94g 2.【CVE-2026-50751】The official source has released a fix update for the vulnerability. Please update to the relevant version. https://support.checkpoint.com/results/sk/sk185033 3.【CVE-2026-11645】The official source has released a fix update for the vulnerability. Please update to the relevant version. https://chromereleases.googleblog.com/2026/06/stable-channel-update-for-desktop_0153744567.html 4.【CVE-2026-7473】The official source has released a fix update for the vulnerability. Please update to the relevant version. https://www.arista.com/en/support/advisories-notices/security-advisory/24005-security-advisory-0137 5.【CVE-2026-20245】The official source has released a fix update for the vulnerability. Please update to the relevant version. https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-privesc-4uxFrdzx 6.【CVE-2026-10520】The official source has released a fix update for the vulnerability. Please update to the relevant version. https://hub.ivanti.com/s/article/Security-Advisory-Ivanti-Sentry-CVE-2026-10520-CVE-2026-10523 7.【CVE-2026-35273】The official source has released a fix update for the vulnerability. Please update to the relevant version. https://www.oracle.com/security-alerts/alert-cve-2026-35273.html
[Reference]

(This notification is for informational purposes only and does not constitute a cybersecurity incident).
If you have questions or suggestions regarding this notification, please feel free to contact us.
Ministry of education information & communication security contingency platform
Website: https://info.cert.tanet.edu.tw/
Phone: +886-7-5250211
Internet Phone: 98400000
E-Mail: service@cert.tanet.edu.tw

Organizer: Computer Center