The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical remote code execution (RCE) vulnerability in the Microsoft Windows Video ActiveX Control to its Known Exploited Vulnerabilities (KEV) catalog. Tracked as CVE-2008-0015, this flaw, originally disclosed nearly two decades ago, now confirms active exploitation in the wild. CISA updated the catalog on February […] The post CISA Adds Actively Exploited Windows ActiveX RCE Flaw to KEV Catalog appeared first on Cyber Security News.