CISA Adds CVE-2020-5741 and CVE-2021-39144 to the Known Exploited Vulnerabilities Catalog

FortiGuard Labs is aware that the Cybersecurity & Infrastructure Security Agency (CISA) added CVE-2020-5741 (Plex Media Server remote code execution vulnerability) and CVE-2021-39144 (XStream Remote Code Execution Vulnerability) to their Known Exploited Vulnerabilities (KEV) catalog on March 10, 2023. The catalog lists vulnerabilities that are being actively exploited in the wild and require federal agencies to apply patches by the due date.Why is this Significant?This is significant because CVE-2020-5741 (Plex Media Server Remote Code Execution Vulnerability) and CVE-2021-39144 (XStream Remote …

actively exploited agency amp aware catalog cisa code code execution cve cve-2021-39144 cybersecurity exploited federal federal agencies infrastructure infrastructure security kev known exploited vulnerabilities known exploited vulnerabilities catalog labs lists march media patches plex plex media server remote code remote code execution security server vulnerabilities vulnerability