CISA Adds Twilio Authy and IE Flaws to Exploited Vulnerabilities List
CISA Adds Twilio Authy and IE Flaws to Exploited Vulnerabilities List
24 July 2024
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two security flaws to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation.
The vulnerabilities are listed below -
CVE-2012-4792 (CVSS score: 9.3) - Microsoft Internet Explorer Use-After-Free Vulnerability
CVE-2024-39891 (CVSS score: 5.3) - Twilio Authy Information Disclosure