{"id":3797,"date":"2025-05-04T19:25:49","date_gmt":"2025-05-04T19:25:49","guid":{"rendered":"https:\/\/securitybriefing.net\/?p=3797"},"modified":"2025-05-04T19:25:53","modified_gmt":"2025-05-04T19:25:53","slug":"cisa%e3%80%81%e6%82%aa%e7%94%a8%e3%81%95%e3%82%8c%e3%81%9f%e3%82%ab%e3%82%bf%e3%83%ad%e3%82%b0%e3%81%ab2%e3%81%a4%e3%81%ae%e9%ab%98%e3%83%aa%e3%82%b9%e3%82%af%e8%84%86%e5%bc%b1%e6%80%a7%e3%82%92","status":"publish","type":"post","link":"https:\/\/securitybriefing.net\/ja\/%e3%83%8b%e3%83%a5%e3%83%bc%e3%82%b9\/cisa%e3%80%81%e6%82%aa%e7%94%a8%e3%81%95%e3%82%8c%e3%81%9f%e3%82%ab%e3%82%bf%e3%83%ad%e3%82%b0%e3%81%ab2%e3%81%a4%e3%81%ae%e9%ab%98%e3%83%aa%e3%82%b9%e3%82%af%e8%84%86%e5%bc%b1%e6%80%a7%e3%82%92\/","title":{"rendered":"CISA\u304c2\u3064\u306e\u9ad8\u30ea\u30b9\u30af\u8106\u5f31\u6027\u3092\u60aa\u7528\u30ab\u30bf\u30ed\u30b0\u306b\u8ffd\u52a0\uff1a\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30c1\u30fc\u30e0\u304c\u4eca\u3059\u3079\u304d\u3053\u3068"},"content":{"rendered":"<p>\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30fb\u30a4\u30f3\u30d5\u30e9\u30b9\u30c8\u30e9\u30af\u30c1\u30e3\u30fc\u30fb\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5e81\uff08CISA\uff09\u306f\u518d\u3073\u305d\u306e <a class=\"\" href=\"https:\/\/www.cisa.gov\/known-exploited-vulnerabilities-catalog\">\u65e2\u77e5\u306e\u60aa\u7528\u3055\u308c\u305f\u8106\u5f31\u6027\u30ab\u30bf\u30ed\u30b0\uff08KEV\uff09\u3092\u66f4\u65b0\u3057\u307e\u3057\u305f<\/a>\u2014\u9023\u90a6\u304a\u3088\u3073\u6c11\u9593\u90e8\u9580\u306e\u9632\u5fa1\u8005\u306b\u3068\u3063\u3066\u91cd\u8981\u306a\u60c5\u5831\u6e90\u3067\u3059\u30022025\u5e745\u67082\u65e5\u3001\u91ce\u751f\u3067\u60aa\u7528\u3055\u308c\u3066\u3044\u308b\u3053\u3068\u304c\u78ba\u8a8d\u3055\u308c\u305f2\u3064\u306e\u8106\u5f31\u6027\u304c\u8ffd\u52a0\u3055\u308c\u307e\u3057\u305f\uff1a<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><a class=\"\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2025-34028\">CVE-2025-34028 \u2013 Commvault Command Center \u30d1\u30b9\u30c8\u30e9\u30d0\u30fc\u30b5\u30eb\u8106\u5f31\u6027<\/a><\/li>\n\n\n\n<li><a class=\"\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2024-58136\">CVE-2024-58136 \u2013 YiiFramework \u4ee3\u66ff\u30d1\u30b9\u8106\u5f31\u6027\uff1a\u4e0d\u9069\u5207\u306a\u4fdd\u8b77<\/a><\/li>\n<\/ul>\n\n\n\n<p>\u3053\u308c\u3089\u306e\u62e1\u5f35\u306f\u3001\u3059\u3079\u3066\u306e\u30bb\u30af\u30bf\u30fc\u306e\u7d44\u7e54\u304c\u3001\u9023\u90a6\u306e\u7a4d\u6975\u7684\u306a\u8981\u6c42\u304c\u306a\u3044\u5834\u5408\u3067\u3082\u3001\u8106\u5f31\u6027\u7ba1\u7406\u306b\u304a\u3044\u3066\u8b66\u6212\u3092\u6020\u3089\u305a\u3001\u7a4d\u6975\u7684\u3067\u3042\u308b\u5fc5\u8981\u304c\u3042\u308b\u3053\u3068\u3092\u5f37\u8abf\u3057\u3066\u3044\u307e\u3059\u3002.<\/p>\n\n\n<h2 class=\"wp-block-heading\" id=\"why-these-cves-matter\"><strong>\u306a\u305c\u3053\u308c\u3089\u306eCVE\u304c\u91cd\u8981\u306a\u306e\u304b<\/strong><\/h2>\n\n\n<p><a class=\"\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2025-34028\">CVE-2025-34028<\/a> Commvault Command Center\u306b\u304a\u3051\u308b\u30d1\u30b9\u30c8\u30e9\u30d0\u30fc\u30b5\u30eb\u8106\u5f31\u6027\u306f\u3001\u653b\u6483\u8005\u304c\u8a31\u53ef\u3055\u308c\u3066\u3044\u306a\u3044\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u3092\u8aad\u307f\u53d6\u3063\u305f\u308a\u3001\u610f\u56f3\u3055\u308c\u305f\u30d5\u30a1\u30a4\u30eb\u69cb\u9020\u5916\u3067\u30b3\u30fc\u30c9\u3092\u5b9f\u884c\u3057\u305f\u308a\u3059\u308b\u3053\u3068\u3092\u53ef\u80fd\u306b\u3057\u307e\u3059\u3002\u3053\u306e\u8106\u5f31\u6027\u306f\u3001\u30d0\u30c3\u30af\u30a2\u30c3\u30d7\u304a\u3088\u3073\u30c7\u30fc\u30bf\u4fdd\u8b77\u30b7\u30b9\u30c6\u30e0\u306e\u6a5f\u5bc6\u6027\u306e\u9ad8\u3044\u6027\u8cea\u3092\u8003\u3048\u308b\u3068\u7279\u306b\u554f\u984c\u3067\u3059\u3002\u3053\u308c\u3089\u306f\u30e9\u30f3\u30b5\u30e0\u30a6\u30a7\u30a2\u653b\u6483\u8005\u3084\u56fd\u5bb6\u653b\u6483\u8005\u306e\u597d\u3080\u30bf\u30fc\u30b2\u30c3\u30c8\u3067\u3059\u3002.<\/p>\n\n\n\n<p><a class=\"\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2024-58136\">CVE-2024-58136<\/a> \u306f\u3001\u4e00\u822c\u7684\u306bWeb\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u3067\u4f7f\u7528\u3055\u308c\u308bYii PHP\u30d5\u30ec\u30fc\u30e0\u30ef\u30fc\u30af\u306b\u5f71\u97ff\u3092\u4e0e\u3048\u307e\u3059\u3002\u3053\u308c\u306f\u3001\u4ee3\u66ff\u30d1\u30b9\u306e\u4fdd\u8b77\u304c\u4e0d\u5341\u5206\u3067\u3042\u308b\u3053\u3068\u306b\u8d77\u56e0\u3057\u3001\u8a2d\u8a08\u3055\u308c\u305f\u30a2\u30af\u30bb\u30b9\u5236\u5fa1\u3092\u56de\u907f\u3059\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002\u305d\u306e\u60aa\u7528\u306f\u3001\u6a5f\u5bc6\u6a5f\u80fd\u3084\u30c7\u30fc\u30bf\u306e\u4e0d\u6b63\u4f7f\u7528\u306b\u3064\u306a\u304c\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u3001\u958b\u767a\u8005\u3084\u30d7\u30e9\u30c3\u30c8\u30d5\u30a9\u30fc\u30e0\u7ba1\u7406\u8005\u306b\u3068\u3063\u3066\u91cd\u5927\u306a\u30ea\u30b9\u30af\u3092\u3082\u305f\u3089\u3057\u307e\u3059\u3002.<\/p>\n\n\n<h2 class=\"wp-block-heading\" id=\"the-role-of-bod-2201\"><strong>BOD 22-01\u306e\u5f79\u5272<\/strong><\/h2>\n\n\n<p>\u9023\u90a6\u6c11\u9593\u884c\u653f\u6a5f\u95a2\uff08FCEB\uff09\u306f <a class=\"\" href=\"https:\/\/www.cisa.gov\/news-events\/directives\/bod-22-01-reducing-significant-risk-known-exploited-vulnerabilities\">\u62d8\u675f\u529b\u306e\u3042\u308b\u904b\u7528\u6307\u4ee422-01<\/a> \u306b\u5f93\u3044\u3001KEV\u306b\u30ea\u30b9\u30c8\u3055\u308c\u305f\u8106\u5f31\u6027\u3092\u6240\u5b9a\u306e\u671f\u9593\u5185\u306b\u4fee\u6b63\u3057\u306a\u3051\u308c\u3070\u306a\u308a\u307e\u305b\u3093\u3002\u3053\u306e\u6307\u4ee4\u306f\u3001\u653f\u5e9c\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u4e0a\u3067\u3088\u308a\u5f37\u56fa\u306a\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30dd\u30b8\u30b7\u30e7\u30f3\u3092\u652f\u6301\u3057\u3066\u3001\u7a4d\u6975\u7684\u306b\u60aa\u7528\u3055\u308c\u3066\u3044\u308bCVE\u306b\u5bfe\u3059\u308b\u69cb\u9020\u5316\u3055\u308c\u305f\u512a\u5148\u7684\u306a\u5bfe\u5fdc\u3092\u7fa9\u52d9\u4ed8\u3051\u3066\u3044\u307e\u3059\u3002.<br>\u3053\u306e\u6307\u4ee4\u306f\u9023\u90a6\u6a5f\u95a2\u3092\u5bfe\u8c61\u3068\u3057\u3066\u3044\u307e\u3059\u304c\u3001CISA\u306f\u3059\u3079\u3066\u306e\u7d44\u7e54\u2014\u6c11\u9593\u4f01\u696d\u3001\u91cd\u8981\u30a4\u30f3\u30d5\u30e9\u30d7\u30ed\u30d0\u30a4\u30c0\u30fc\u3001SaaS\u30d9\u30f3\u30c0\u30fc\u2014\u306b\u5bfe\u3057\u3066\u3001KEV\u30ab\u30bf\u30ed\u30b0\u3092\u7dca\u6025\u306e\u4fee\u6b63\u30ea\u30b9\u30c8\u3068\u3057\u3066\u4f7f\u7528\u3059\u308b\u3053\u3068\u3092\u5f37\u304f\u63a8\u5968\u3057\u3066\u3044\u307e\u3059\u3002.<\/p>\n\n\n<h2 class=\"wp-block-heading\" id=\"expert-advice-for-security-teams\"><strong>\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30c1\u30fc\u30e0\u3078\u306e\u5c02\u9580\u5bb6\u306e\u30a2\u30c9\u30d0\u30a4\u30b9<\/strong><\/h2>\n\n\n<p>\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30d6\u30ea\u30fc\u30d5\u30a3\u30f3\u30b0\u3067\u306f\u3001Commvault\u307e\u305f\u306fYii\u306e\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3092\u76e3\u7763\u3059\u308b\u7ba1\u7406\u8005\u306b\u5bfe\u3057\u3066\u5373\u6642\u306e\u884c\u52d5\u3092\u4fc3\u3057\u307e\u3059\uff1a<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Commvault Command Center\u304a\u3088\u3073Yii\u306b\u57fa\u3065\u304fWeb\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u306e\u3059\u3079\u3066\u306e\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3092\u76e3\u67fb\u3057\u307e\u3059\u3002.<\/li>\n\n\n\n<li>\u3067\u304d\u308b\u3060\u3051\u65e9\u304f\u30d1\u30c3\u30c1\u3092\u9069\u7528\u3059\u308b\u304b\u3001\u7de9\u548c\u7b56\u3092\u8b1b\u3058\u307e\u3059\u3002\u516c\u306b\u60aa\u7528\u3055\u308c\u3066\u3044\u308b\u8106\u5f31\u6027\u306e\u30d1\u30c3\u30c1\u9069\u7528\u3092\u9045\u3089\u305b\u308b\u3068\u3001\u76f4\u63a5\u7684\u306a\u59a5\u5354\u306b\u3064\u306a\u304c\u308b\u53ef\u80fd\u6027\u304c\u3042\u308a\u307e\u3059\u3002.<\/li>\n\n\n\n<li>\u30d5\u30a1\u30a4\u30eb\u30a2\u30af\u30bb\u30b9\u5236\u5fa1\u304a\u3088\u3073Web\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u30d5\u30a1\u30a4\u30a2\u30a6\u30a9\u30fc\u30eb\uff08WAF\uff09\u3092\u9069\u7528\u3057\u3066\u3001\u30d1\u30b9\u30c8\u30e9\u30d0\u30fc\u30b5\u30eb\u307e\u305f\u306f\u4ee3\u66ff\u30d1\u30b9\u30a2\u30af\u30bb\u30b9\u306e\u8a66\u307f\u3092\u8b58\u5225\u3057\u3001\u9632\u6b62\u3057\u307e\u3059\u3002.<\/li>\n\n\n\n<li>CISA\u306eKEV\u30ab\u30bf\u30ed\u30b0\u3092\u6bce\u9031\u8ffd\u8de1\u3057\u3001\u81ea\u52d5\u5316\u3055\u308c\u305f\u8106\u5f31\u6027\u30b9\u30ad\u30e3\u30f3\u304a\u3088\u3073\u4fee\u6b63\u30d7\u30ed\u30bb\u30b9\u306b\u7d44\u307f\u8fbc\u307f\u307e\u3059\u3002.<\/li>\n\n\n\n<li>\u30a2\u30af\u30bb\u30b9\u30ed\u30b0\u3092\u76e3\u67fb\u3057\u3001\u7279\u306b\u5916\u90e8\u306b\u9762\u3057\u305f\u30b7\u30b9\u30c6\u30e0\u3067\u306e\u4ee5\u524d\u306e\u60aa\u7528\u306e\u5146\u5019\u3092\u63a2\u3059\u305f\u3081\u306b\u8105\u5a01\u30cf\u30f3\u30c6\u30a3\u30f3\u30b0\u3092\u5b9f\u65bd\u3057\u307e\u3059\u3002.<\/li>\n<\/ul>\n\n\n\n<p><strong>\u6700\u5f8c\u306e\u8003\u3048\uff1a<\/strong> CISA\u306eKEV\u30ab\u30bf\u30ed\u30b0\u306e\u7d99\u7d9a\u7684\u306a\u66f4\u65b0\u306f\u3001\u91cd\u8981\u306a\u8b66\u544a\u30b7\u30b9\u30c6\u30e0\u3092\u8868\u3057\u3066\u3044\u307e\u3059\u3002\u3053\u308c\u3089\u306e\u8b66\u544a\u306b\u5bfe\u5fdc\u3057\u306a\u3044\u3053\u3068\u306f\u3001\u30b5\u30a4\u30d0\u30fc\u72af\u7f6a\u8005\u304c\u7a4d\u6975\u7684\u306b\u5229\u7528\u3057\u3066\u3044\u308b\u65e2\u77e5\u306e\u4fb5\u5165\u30dd\u30a4\u30f3\u30c8\u3092\u958b\u3044\u305f\u307e\u307e\u306b\u3059\u308b\u306e\u3068\u540c\u3058\u3067\u3059\u3002\u6c11\u9593\u307e\u305f\u306f\u516c\u5171\u90e8\u9580\u306e\u3044\u305a\u308c\u306b\u5c5e\u3057\u3066\u3044\u3066\u3082\u3001\u5404KEV\u306e\u8ffd\u52a0\u3092\u6700\u512a\u5148\u3067\u51e6\u7406\u3057\u3066\u304f\u3060\u3055\u3044\u3002\u7a4d\u6975\u7684\u306a\u8106\u5f31\u6027\u7ba1\u7406\u306f\u3082\u306f\u3084\u9078\u629e\u80a2\u3067\u306f\u306a\u304f\u3001\u73fe\u4ee3\u306e\u4f01\u696d\u3092\u4fdd\u8b77\u3059\u308b\u305f\u3081\u306e\u5fc5\u8981\u6761\u4ef6\u3067\u3059\u3002.<\/p>","protected":false},"excerpt":{"rendered":"<p>\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u304a\u3088\u3073\u30a4\u30f3\u30d5\u30e9\u30b9\u30c8\u30e9\u30af\u30c1\u30e3\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5e81\uff08CISA\uff09\u306f\u3001\u518d\u3073\u65e2\u77e5\u306e\u60aa\u7528\u8106\u5f31\u6027\u30ab\u30bf\u30ed\u30b0\uff08KEV\uff09\u3092\u66f4\u65b0\u3057\u307e\u3057\u305f\u3002\u3053\u308c\u306f\u3001\u9023\u90a6\u304a\u3088\u3073\u6c11\u9593\u90e8\u9580\u306e\u9632\u5fa1\u8005\u306b\u3068\u3063\u3066\u91cd\u8981\u306a\u60c5\u5831\u6e90\u3067\u3059\u30022025\u5e745\u67082\u65e5\u3001\u2026 <a class=\"more-link\" href=\"https:\/\/securitybriefing.net\/ja\/%e3%83%8b%e3%83%a5%e3%83%bc%e3%82%b9\/cisa%e3%80%81%e6%82%aa%e7%94%a8%e3%81%95%e3%82%8c%e3%81%9f%e3%82%ab%e3%82%bf%e3%83%ad%e3%82%b0%e3%81%ab2%e3%81%a4%e3%81%ae%e9%ab%98%e3%83%aa%e3%82%b9%e3%82%af%e8%84%86%e5%bc%b1%e6%80%a7%e3%82%92\/\">\u7d9a\u304d\u3092\u8aad\u3080 <span class=\"screen-reader-text\">CISA\u304c2\u3064\u306e\u9ad8\u30ea\u30b9\u30af\u8106\u5f31\u6027\u3092\u60aa\u7528\u30ab\u30bf\u30ed\u30b0\u306b\u8ffd\u52a0\uff1a\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30c1\u30fc\u30e0\u304c\u4eca\u3059\u3079\u304d\u3053\u3068<\/span><\/a><\/p>","protected":false},"author":3,"featured_media":3798,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[23],"tags":[],"class_list":["post-3797","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","entry"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v26.8 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>CISA Adds Two High-Risk Vulnerabilities to Exploited Catalog: What Security Teams Should Do Now | Security Briefing<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/securitybriefing.net\/ja\/\u30cb\u30e5\u30fc\u30b9\/cisa\u3001\u60aa\u7528\u3055\u308c\u305f\u30ab\u30bf\u30ed\u30b0\u306b2\u3064\u306e\u9ad8\u30ea\u30b9\u30af\u8106\u5f31\u6027\u3092\/\" \/>\n<meta property=\"og:locale\" content=\"ja_JP\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"CISA Adds Two High-Risk Vulnerabilities to Exploited Catalog: What Security Teams Should Do Now | Security Briefing\" \/>\n<meta property=\"og:description\" content=\"The Cybersecurity and Infrastructure Security Agency (CISA) again refreshed its Known Exploited Vulnerabilities Catalog (KEV)\u2014a critical source of information for both federal and private sector defenders. On May 2, 2025,&hellip; \u7d9a\u304d\u3092\u8aad\u3080 CISA Adds Two High-Risk Vulnerabilities to Exploited Catalog: What Security Teams Should Do Now\" \/>\n<meta property=\"og:url\" content=\"https:\/\/securitybriefing.net\/ja\/\u30cb\u30e5\u30fc\u30b9\/cisa\u3001\u60aa\u7528\u3055\u308c\u305f\u30ab\u30bf\u30ed\u30b0\u306b2\u3064\u306e\u9ad8\u30ea\u30b9\u30af\u8106\u5f31\u6027\u3092\/\" \/>\n<meta property=\"og:site_name\" content=\"Security Briefing\" \/>\n<meta property=\"article:published_time\" content=\"2025-05-04T19:25:49+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-05-04T19:25:53+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/securitybriefing.net\/wp-content\/uploads\/2025\/05\/CISA-Adds-Two-High-Risk-Vulnerabilities-to-Exploited-Catalog.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"966\" \/>\n\t<meta property=\"og:image:height\" content=\"425\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"C\u00e9sar Daniel Barreto\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"\u57f7\u7b46\u8005\" \/>\n\t<meta name=\"twitter:data1\" content=\"C\u00e9sar Daniel Barreto\" \/>\n\t<meta name=\"twitter:label2\" content=\"\u63a8\u5b9a\u8aad\u307f\u53d6\u308a\u6642\u9593\" \/>\n\t<meta name=\"twitter:data2\" content=\"3\u5206\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/\"},\"author\":{\"name\":\"C\u00e9sar Daniel Barreto\",\"@id\":\"https:\/\/securitybriefing.net\/#\/schema\/person\/164e5a0bfff5012ebfb8eb4d03c2c24c\"},\"headline\":\"CISA Adds Two High-Risk Vulnerabilities to Exploited Catalog: What Security Teams Should Do Now\",\"datePublished\":\"2025-05-04T19:25:49+00:00\",\"dateModified\":\"2025-05-04T19:25:53+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/\"},\"wordCount\":464,\"publisher\":{\"@id\":\"https:\/\/securitybriefing.net\/#organization\"},\"image\":{\"@id\":\"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/securitybriefing.net\/wp-content\/uploads\/2025\/05\/CISA-Adds-Two-High-Risk-Vulnerabilities-to-Exploited-Catalog.jpg\",\"articleSection\":[\"News\"],\"inLanguage\":\"ja\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/\",\"url\":\"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/\",\"name\":\"CISA Adds Two High-Risk Vulnerabilities to Exploited Catalog: What Security Teams Should Do Now | Security Briefing\",\"isPartOf\":{\"@id\":\"https:\/\/securitybriefing.net\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/securitybriefing.net\/wp-content\/uploads\/2025\/05\/CISA-Adds-Two-High-Risk-Vulnerabilities-to-Exploited-Catalog.jpg\",\"datePublished\":\"2025-05-04T19:25:49+00:00\",\"dateModified\":\"2025-05-04T19:25:53+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/#breadcrumb\"},\"inLanguage\":\"ja\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"ja\",\"@id\":\"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/#primaryimage\",\"url\":\"https:\/\/securitybriefing.net\/wp-content\/uploads\/2025\/05\/CISA-Adds-Two-High-Risk-Vulnerabilities-to-Exploited-Catalog.jpg\",\"contentUrl\":\"https:\/\/securitybriefing.net\/wp-content\/uploads\/2025\/05\/CISA-Adds-Two-High-Risk-Vulnerabilities-to-Exploited-Catalog.jpg\",\"width\":966,\"height\":425,\"caption\":\"CISA Adds Two High-Risk Vulnerabilities to Exploited Catalog\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/securitybriefing.net\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"CISA Adds Two High-Risk Vulnerabilities to Exploited Catalog: What Security Teams Should Do Now\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/securitybriefing.net\/#website\",\"url\":\"https:\/\/securitybriefing.net\/\",\"name\":\"Security Briefing\",\"description\":\"Read cybersecurity news, online safety guides, cyber threat updates, and use free security tools from Security Briefing.\",\"publisher\":{\"@id\":\"https:\/\/securitybriefing.net\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/securitybriefing.net\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"ja\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/securitybriefing.net\/#organization\",\"name\":\"Security Briefing\",\"url\":\"https:\/\/securitybriefing.net\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"ja\",\"@id\":\"https:\/\/securitybriefing.net\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/securitybriefing.net\/wp-content\/uploads\/2023\/06\/security-briefing-logo-5.png\",\"contentUrl\":\"https:\/\/securitybriefing.net\/wp-content\/uploads\/2023\/06\/security-briefing-logo-5.png\",\"width\":256,\"height\":70,\"caption\":\"Security Briefing\"},\"image\":{\"@id\":\"https:\/\/securitybriefing.net\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/securitybriefing.net\/#\/schema\/person\/164e5a0bfff5012ebfb8eb4d03c2c24c\",\"name\":\"C\u00e9sar Daniel Barreto\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"ja\",\"@id\":\"https:\/\/securitybriefing.net\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/9e709cab74f02e628ffc32849980d0ea51903be7d4bcb52e99250bac60f0b683?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/9e709cab74f02e628ffc32849980d0ea51903be7d4bcb52e99250bac60f0b683?s=96&d=mm&r=g\",\"caption\":\"C\u00e9sar Daniel Barreto\"},\"description\":\"C\u00e9sar Daniel Barreto is an esteemed cybersecurity writer and expert, known for his in-depth knowledge and ability to simplify complex cyber security topics. With extensive experience in network security and data protection, he regularly contributes insightful articles and analysis on the latest cybersecurity trends, educating both professionals and the public.\",\"url\":\"https:\/\/securitybriefing.net\/ja\/author\/cesarbarreto\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"CISA\u3001\u60aa\u7528\u30ab\u30bf\u30ed\u30b0\u306b2\u3064\u306e\u9ad8\u30ea\u30b9\u30af\u8106\u5f31\u6027\u3092\u8ffd\u52a0\uff1a\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30c1\u30fc\u30e0\u304c\u4eca\u3059\u3079\u304d\u3053\u3068 | \u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30d6\u30ea\u30fc\u30d5\u30a3\u30f3\u30b0","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/securitybriefing.net\/ja\/\u30cb\u30e5\u30fc\u30b9\/cisa\u3001\u60aa\u7528\u3055\u308c\u305f\u30ab\u30bf\u30ed\u30b0\u306b2\u3064\u306e\u9ad8\u30ea\u30b9\u30af\u8106\u5f31\u6027\u3092\/","og_locale":"ja_JP","og_type":"article","og_title":"CISA Adds Two High-Risk Vulnerabilities to Exploited Catalog: What Security Teams Should Do Now | Security Briefing","og_description":"The Cybersecurity and Infrastructure Security Agency (CISA) again refreshed its Known Exploited Vulnerabilities Catalog (KEV)\u2014a critical source of information for both federal and private sector defenders. On May 2, 2025,&hellip; \u7d9a\u304d\u3092\u8aad\u3080 CISA Adds Two High-Risk Vulnerabilities to Exploited Catalog: What Security Teams Should Do Now","og_url":"https:\/\/securitybriefing.net\/ja\/\u30cb\u30e5\u30fc\u30b9\/cisa\u3001\u60aa\u7528\u3055\u308c\u305f\u30ab\u30bf\u30ed\u30b0\u306b2\u3064\u306e\u9ad8\u30ea\u30b9\u30af\u8106\u5f31\u6027\u3092\/","og_site_name":"Security Briefing","article_published_time":"2025-05-04T19:25:49+00:00","article_modified_time":"2025-05-04T19:25:53+00:00","og_image":[{"width":966,"height":425,"url":"https:\/\/securitybriefing.net\/wp-content\/uploads\/2025\/05\/CISA-Adds-Two-High-Risk-Vulnerabilities-to-Exploited-Catalog.jpg","type":"image\/jpeg"}],"author":"C\u00e9sar Daniel Barreto","twitter_card":"summary_large_image","twitter_misc":{"\u57f7\u7b46\u8005":"C\u00e9sar Daniel Barreto","\u63a8\u5b9a\u8aad\u307f\u53d6\u308a\u6642\u9593":"3\u5206"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/#article","isPartOf":{"@id":"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/"},"author":{"name":"C\u00e9sar Daniel Barreto","@id":"https:\/\/securitybriefing.net\/#\/schema\/person\/164e5a0bfff5012ebfb8eb4d03c2c24c"},"headline":"CISA Adds Two High-Risk Vulnerabilities to Exploited Catalog: What Security Teams Should Do Now","datePublished":"2025-05-04T19:25:49+00:00","dateModified":"2025-05-04T19:25:53+00:00","mainEntityOfPage":{"@id":"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/"},"wordCount":464,"publisher":{"@id":"https:\/\/securitybriefing.net\/#organization"},"image":{"@id":"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/#primaryimage"},"thumbnailUrl":"https:\/\/securitybriefing.net\/wp-content\/uploads\/2025\/05\/CISA-Adds-Two-High-Risk-Vulnerabilities-to-Exploited-Catalog.jpg","articleSection":["News"],"inLanguage":"ja"},{"@type":"WebPage","@id":"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/","url":"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/","name":"CISA\u3001\u60aa\u7528\u30ab\u30bf\u30ed\u30b0\u306b2\u3064\u306e\u9ad8\u30ea\u30b9\u30af\u8106\u5f31\u6027\u3092\u8ffd\u52a0\uff1a\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30c1\u30fc\u30e0\u304c\u4eca\u3059\u3079\u304d\u3053\u3068 | \u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30d6\u30ea\u30fc\u30d5\u30a3\u30f3\u30b0","isPartOf":{"@id":"https:\/\/securitybriefing.net\/#website"},"primaryImageOfPage":{"@id":"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/#primaryimage"},"image":{"@id":"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/#primaryimage"},"thumbnailUrl":"https:\/\/securitybriefing.net\/wp-content\/uploads\/2025\/05\/CISA-Adds-Two-High-Risk-Vulnerabilities-to-Exploited-Catalog.jpg","datePublished":"2025-05-04T19:25:49+00:00","dateModified":"2025-05-04T19:25:53+00:00","breadcrumb":{"@id":"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/#breadcrumb"},"inLanguage":"ja","potentialAction":[{"@type":"ReadAction","target":["https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/"]}]},{"@type":"ImageObject","inLanguage":"ja","@id":"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/#primaryimage","url":"https:\/\/securitybriefing.net\/wp-content\/uploads\/2025\/05\/CISA-Adds-Two-High-Risk-Vulnerabilities-to-Exploited-Catalog.jpg","contentUrl":"https:\/\/securitybriefing.net\/wp-content\/uploads\/2025\/05\/CISA-Adds-Two-High-Risk-Vulnerabilities-to-Exploited-Catalog.jpg","width":966,"height":425,"caption":"CISA Adds Two High-Risk Vulnerabilities to Exploited Catalog"},{"@type":"BreadcrumbList","@id":"https:\/\/securitybriefing.net\/news\/cisa-adds-two-high-risk-vulnerabilities-to-exploited-catalog-what-security-teams-should-do-now\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/securitybriefing.net\/"},{"@type":"ListItem","position":2,"name":"CISA Adds Two High-Risk Vulnerabilities to Exploited Catalog: What Security Teams Should Do Now"}]},{"@type":"WebSite","@id":"https:\/\/securitybriefing.net\/#website","url":"https:\/\/securitybriefing.net\/","name":"\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30d6\u30ea\u30fc\u30d5\u30a3\u30f3\u30b0","description":"Read cybersecurity news, online safety guides, cyber threat updates, and use free security tools from Security Briefing.","publisher":{"@id":"https:\/\/securitybriefing.net\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/securitybriefing.net\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"ja"},{"@type":"Organization","@id":"https:\/\/securitybriefing.net\/#organization","name":"\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30d6\u30ea\u30fc\u30d5\u30a3\u30f3\u30b0","url":"https:\/\/securitybriefing.net\/","logo":{"@type":"ImageObject","inLanguage":"ja","@id":"https:\/\/securitybriefing.net\/#\/schema\/logo\/image\/","url":"https:\/\/securitybriefing.net\/wp-content\/uploads\/2023\/06\/security-briefing-logo-5.png","contentUrl":"https:\/\/securitybriefing.net\/wp-content\/uploads\/2023\/06\/security-briefing-logo-5.png","width":256,"height":70,"caption":"Security Briefing"},"image":{"@id":"https:\/\/securitybriefing.net\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/securitybriefing.net\/#\/schema\/person\/164e5a0bfff5012ebfb8eb4d03c2c24c","name":"\u30bb\u30b5\u30eb\u30fb\u30c0\u30cb\u30a8\u30eb\u30fb\u30d0\u30ec\u30c3\u30c8","image":{"@type":"ImageObject","inLanguage":"ja","@id":"https:\/\/securitybriefing.net\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/9e709cab74f02e628ffc32849980d0ea51903be7d4bcb52e99250bac60f0b683?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/9e709cab74f02e628ffc32849980d0ea51903be7d4bcb52e99250bac60f0b683?s=96&d=mm&r=g","caption":"C\u00e9sar Daniel Barreto"},"description":"C\u00e9sar Daniel Barreto\u306f\u3001\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306e\u30e9\u30a4\u30bf\u30fc\u3067\u3042\u308a\u5c02\u9580\u5bb6\u3068\u3057\u3066\u5c0a\u656c\u3092\u96c6\u3081\u3066\u304a\u308a\u3001\u305d\u306e\u6df1\u3044\u77e5\u8b58\u3068\u8907\u96d1\u306a\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306e\u30c8\u30d4\u30c3\u30af\u3092\u5358\u7d14\u5316\u3059\u308b\u80fd\u529b\u3067\u77e5\u3089\u308c\u3066\u3044\u307e\u3059\u3002\u30cd\u30c3\u30c8\u30ef\u30fc\u30af\u30fb\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u3068\u30c7\u30fc\u30bf\u4fdd\u8b77\u306e\u5206\u91ce\u3067\u8c4a\u5bcc\u306a\u7d4c\u9a13\u3092\u6301\u3061\u3001\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u306e\u6700\u65b0\u52d5\u5411\u306b\u95a2\u3059\u308b\u6d1e\u5bdf\u306b\u6e80\u3061\u305f\u8a18\u4e8b\u3084\u5206\u6790\u3092\u5b9a\u671f\u7684\u306b\u5bc4\u7a3f\u3057\u3001\u5c02\u9580\u5bb6\u3068\u4e00\u822c\u5e02\u6c11\u306e\u4e21\u65b9\u3092\u6559\u80b2\u3057\u3066\u3044\u308b\u3002","url":"https:\/\/securitybriefing.net\/ja\/author\/cesarbarreto\/"}]}},"_links":{"self":[{"href":"https:\/\/securitybriefing.net\/ja\/wp-json\/wp\/v2\/posts\/3797","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/securitybriefing.net\/ja\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/securitybriefing.net\/ja\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/securitybriefing.net\/ja\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/securitybriefing.net\/ja\/wp-json\/wp\/v2\/comments?post=3797"}],"version-history":[{"count":0,"href":"https:\/\/securitybriefing.net\/ja\/wp-json\/wp\/v2\/posts\/3797\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/securitybriefing.net\/ja\/wp-json\/wp\/v2\/media\/3798"}],"wp:attachment":[{"href":"https:\/\/securitybriefing.net\/ja\/wp-json\/wp\/v2\/media?parent=3797"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/securitybriefing.net\/ja\/wp-json\/wp\/v2\/categories?post=3797"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/securitybriefing.net\/ja\/wp-json\/wp\/v2\/tags?post=3797"}],"curies":[{"name":"\u30ef\u30fc\u30c9\u30d7\u30ec\u30b9","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}