Original release date: November 3, 2021
CISA has issued Binding Operational Directive (BOD) 22-01, Reducing the Significant Risk of Known Exploited Vulnerabilities, to addresses vulnerabilities that establishes specific timeframes for federal civilian agencies to remediate vulnerabilities that are being actively exploited by known adversaries. To support this Directive, CISA has established a catalog of relevant vulnerabilities. This catalog will be updated regularly, and organizations can sign up for notifications when new vulnerabilities are added.
CISA strongly recommends that private businesses, industry, and state, local, tribal and territorial (SLTT) governments prioritize mitigation of vulnerabilities in CISA’s Directive and sign up for updates to the catalog.
CISA urges organizations to review BOD 22-01 and the Fact Sheet for more information.
This product is provided subject to this Notification and this Privacy & Use policy.
CISA released one Industrial Control Systems (ICS) advisory on September 25, 2025. These advisories provide…
Today, CISA issued Emergency Directive ED 25-03: Identify and Mitigate Potential Compromise of Cisco Devices…
CISA is releasing this Alert to provide guidance in response to a widespread software supply…
Today, CISA released a cybersecurity advisory detailing lessons learned from an incident response engagement following…
SonicWall released a security advisory to assist their customers with protecting systems impacted by the…
CISA released nine Industrial Control Systems (ICS) advisories on September 18, 2025. These advisories provide…
This website uses cookies.