CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.
Executive summary
What happened: The Cybersecurity and Infrastructure Security Agency (CISA) added CVE‑2025‑54253 — a critical remote code‑execution...