Based on proof of active exploitation, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added three vulnerabilities to the KEV catalogue. The second vulnerability, CVE-2021-45046, a remote code execution vulnerability affecting the Apache Log4j2 logging library, was discovered in December 2021.
The TP-Link Archer AX-21 routers are affected by the command injection vulnerability (CVE-2023-1389), which might be used to execute code remotely. Threat actors connected to the Mirai botnet have been exploiting the weakness since April 11, 2023, according to Trend Micros Zero Day Initiative.