The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added multiple security flaws affecting products from Zyxel, North Grid Proself, ProjectSend, and CyberPanel to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild.
The list of vulnerabilities is as follows -

CVE-2024-51378 (CVSS score: 10.0) - An incorrect default permissions



Source: TheHackerNews
Source Link: https://thehackernews.com/2024/12/cisa-warns-of-active-exploitation-of.html