Hikvision and Rockwell Automation CVSS 9.8 Flaws Added to CISA KEV Catalog - The Hacker News

Hikvision and Rockwell Automation CVSS 9.8 Flaws Added to CISA KEV Catalog Ravie LakshmananMar 06, 2026Vulnerability / Network Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two security flaws impacting Hikvision and Rockwell Automation products to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The critical-severity vulnerabilities are listed below - CVE-2017-7921 (CVSS score: 9.8) - An improper authentication vulnerability affecting multiple Hikvision products that could allow a malicious user to escalate privileges on the system and gain access to sensitive information.  CVE-2021-22681 (CVSS score: 9.8) - An insufficiently protected credentials vulnerability affecting multiple Rockwell Automation Studio 5000 Logix Designer, RSLogix 5000, and Logix Controllers that could allow an unauthorized user with network access to the controller to bypass the verification mechanism and authenticate with it, as well as alter its configuration and/or application code. The addition of CVE-2017-7921 to the KEV catalog comes more than four months after the SANS Internet Storm Center disclosed that it had detected exploit attempts against Hikvision cameras susceptible to the flaw. However, there appears to be no public report describing attacks involving CVE-2021-22681. In light of active exploitation, Federal Civilian Executive Branch (FCEB) agencies are recommended to update to the latest supported software versions by March 26, 2026, as part of Binding Operational Directive (BOD) 22-01. "These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise," CISA said. "Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of KEV Catalog vulnerabilities as part of their vulnerability management practice." Found this article interesting? Follow us on Google News, Twitter and LinkedIn to read more exclusive content we post. SHARE     Tweet Share Share SHARE  critical infrastructure, cybersecurity, Hikvision, Industrial Control Systems, network security, Rockwell Automation, Vulnerability ⚡ Top Stories This Week New Fragnesia Linux Kernel LPE Grants Root Access via Page Cache Corruption Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence Cisco Catalyst SD-WAN Controller Auth Bypass Actively Exploited to Gain Admin Access ⚡ Weekly Recap: Linux Rootkit, macOS Crypto Stealer, WebSocket Skimmers and More 18-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCE Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass Exploitation On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI Tokenizer Attacks, and 10+ Stories Microsoft Patches 138 Vulnerabilities, Including DNS and Netlogon RCE Flaws New Exim BDAT Vulnerability Exposes GnuTLS Builds to Potential Code Execution cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak [Webinar] How Modern Attack Paths Cross Code, Pipelines, and Cloud Microsoft's MDASH AI System Finds 16 Windows Flaws Fixed in Patch Tuesday Mini Shai-Hulud Worm Compromises TanStack, Mistral AI, Guardrails AI and More Packages Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation Load More ▼ ⭐ Featured Resources Identify Internal Attack Surfaces More Efficiently With a Free Assessment [Guide] Stop Email Fraud Before It Turns Into Ransomware Damage [eBook] Get the 3-Number SOC Diagnostic to Reduce Queue Risk [Webinar] Learn How to Handle Critical SOC Alerts With AI Support