CISA Alerts on TP-Link Authentication Flaw Under Active Exploitation

CISA Alerts on TP-Link Authentication Flaw Under Active Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an alert about a serious security hole in certain TP-Link devices. This flaw, tracked as CVE-2020-24363, allows an attacker on the same network to take control without needing a password. CISA warns that this weakness is already being actively exploited by bad actors. Vulnerability Details […] The post CISA Alerts on TP-Link Authentication Flaw Under Active Exploitation …

CISA Adds TP-Link and WhatsApp Flaws to KEV Catalog Amid Active Exploitation

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a high-severity security flaw impacting TP-Link TL-WA855RE Wi-Fi Ranger Extender products to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, CVE-2020-24363 (CVSS score: 8.8), concerns a case of missing authentication that could be abused to obtain

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA Adds Two Known Exploited Vulnerabilities to Catalog chayes Sep 02, 2025 Release DateSeptember 02, 2025 DescriptionCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.CVE-2020-24363 TP-link TL-WA855RE Missing Authentication for Critical Function VulnerabilityCVE-2025-55177 Meta Platforms WhatsApp Incorrect Authorization VulnerabilityThese types of vulnerabili…