CISA gives US civilian agencies until August 1 to resolve four Microsoft vulnerabilities

The Cybersecurity and Infrastructure Security Agency (CISA) has given U.S. federal civilian agencies until August 1 to resolve four serious zero-day vulnerabilities announced as part of Microsoft’s monthly Patch Tuesday release. The inclusion of the four vulnerabilities — CVE-2023-32046, CVE-2023-32049, CVE-2023-35311, CVE-2023-36874 — into CISA’s catalog means the bugs are already being exploited by hackers.

agency august catalog cisa civilian cve cve-2023-32046 cve-2023-32049 cve-2023-35311 cve-2023-36874 cybersecurity federal government inclusion infrastructure infrastructure security microsoft microsoft vulnerabilities patch patch tuesday release security serious tuesday vulnerabilities zero-day zero-day vulnerabilities