THREATNOIR
Subscribe
Back to Feed
VulnerabilitiesApr 24, 2026

‼️ Four vulnerabilities have been added to the CISA KEV Catalog CVE-2025-29635 - D-Link DIR-823X...

CISA adds four vulnerabilities to Known Exploited Vulnerabilities catalog including D-Link, Samsung, and SimpleHelp

Read at source

Summary

The Cybersecurity and Infrastructure Security Agency (CISA) has added four vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, indicating active exploitation in the wild. The CVEs affect D-Link DIR-823X routers (command injection), Samsung MagicINFO 9 servers (path traversal), and SimpleHelp software (path traversal), among others. Inclusion in the KEV catalog signals these vulnerabilities are being actively exploited and pose significant risk to organizations.

Indicators of Compromise

  • cve — CVE-2025-29635
  • cve — CVE-2024-7399
  • cve — CVE-2024-57728
  • cve — CVE-2024-57726

Entities

D-Link (vendor)Samsung (vendor)DIR-823X (product)MagicINFO 9 (product)SimpleHelp (product)CISA Known Exploited Vulnerabilities Catalog (technology)