CVE-2017-1000353 – IoT OT Security News

CISA KEV 警告 25/10/02：GNU Bash／Juniper ScreenOS／Jenkins／Meteobridge／Samsung の脆弱性を登録

U.S. CISA adds Smartbedded Meteobridge, Samsung, Juniper ScreenOS, Jenkins, and GNU Bash flaws to its Known Exploited Vulnerabilities catalog

2025/10/04 SecurityAffairs — 米国の Cybersecurity and Infrastructure Security Agency (CISA) が、Smartbedded Meteobridge／Samsung／Juniper ScreenOS／Jenkins／GNU Bash の脆弱性を KEV (Known Exploited Vulnerabilities) カタログに登録した。これらの脆弱性は以下の通りである。

CVE-2014-6278：GNU Bash OS コマンド・インジェクション
CVE-2015-7755：Juniper ScreenOS 不適切な認証
CVE-2017-1000353：Jenkins リモート・コード実行
CVE-2025-4008：Meteobridge のコマンド・インジェクション
CVE-2025-21043：Samsung モバイル・デバイスの境界外書き込み

API (238)
APT (523)
Asia (398)
AuthN AuthZ (789)
BruteForce (66)
BugBounty (73)
CyberAttack (3,201)
DarkWeb (228)
DataBreach (550)
DataLeak (194)
DDoS (164)
DoubleExtortion (15)
Exploit (1,361)
Literacy (2,281)
LOLbin (57)
MageCartAttack (14)
Malware (1,421)
MCP (16)
MisConfiguration (57)
NHI (8)
Outage (106)
ParadigmShift (181)
Privacy (240)
Protection (649)
RaaS (121)
Ransomware (721)
RAT (777)
Repository (325)
Research (1,210)
Resilience (133)
Scammer (614)
SecTools (210)
SocialEngineering (47)
SupplyChain (404)
TTP (1,001)
Uncategorized (11)
Vulnerability (4,503)
WateringHoleAttack (4)
Zero Trust (382)
_AI/ML (306)
_CDN (4)
_Cloud (364)
_Container (73)
_CryptCcurrency (40)
_Defence (162)
_Education (8)
_Finance (160)
_Government (1,037)
_HealthCare (47)
_Human (51)
_ICS (85)
_IDS/IPS (182)
_Industry (221)
_Infrastructure (129)
_Mobile (162)
_OpenSource (1,385)
_PLC (39)
_Regulation (158)
_Retail (76)
_RTOS (6)
_Space (26)
_Statistics (415)
_Storage (70)
_Telecom (77)
_Transportation (56)