kev catalog

CISA’s Known Exploited Vulnerabilities (KEV) Catalog expanded on February 25, 2026, with two additions that deserve immediate attention from network teams: CVE-2022-20775, a path traversal/privilege‑escalation flaw in Cisco Catalyst SD‑WAN components, and CVE-2026-20127, a critical...

CISA’s decision to add CVE-2026-25108 — an OS command injection in Soliton Systems K.K.’s FileZen — to its Known Exploited Vulnerabilities (KEV) Catalog underscores the immediate, systemic risk posed by insecure file-transfer appliances and the operational reality that attackers are already...

CISA’s latest update to the Known Exploited Vulnerabilities (KEV) Catalog — adding two Roundcube Webmail flaws, CVE‑2025‑49113 and CVE‑2025‑68461 — is a blunt reminder that webmail software remains a high‑value target for attackers and that patching windows still close too slowly across large...

CISA’s Known Exploited Vulnerabilities (KEV) Catalog has been updated to include two high-impact flaws this week — a long‑standing GitLab Server‑Side Request Forgery (SSRF) issue and a newly disclosed Dell RecoverPoint for Virtual Machines hard‑coded credential that has been weaponized in real...

CISA’s latest update to the Known Exploited Vulnerabilities (KEV) Catalog adds four CVEs—spanning an aging ActiveX control, a decade-old Zimbra SSRF, a 2024 anti‑ransomware file‑upload flaw, and a 2026 Chromium use‑after‑free—underscoring that active exploitation can touch every layer of modern...

CISA’s addition of CVE-2026-1731 to the Known Exploited Vulnerabilities (KEV) Catalog puts a high‑priority, pre‑authentication OS command‑injection flaw in BeyondTrust Remote Support (RS) and certain Privileged Remote Access (PRA) versions squarely in the crosshairs of federal and enterprise...

CISA today added four vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog — a move that forces federal agencies to prioritize fixes and should put every security team on high alert. The four CVEs are: CVE-2024-43468 (Microsoft Configuration Manager — unauthenticated SQL...

CISA this week added two high‑risk flaws to its Known Exploited Vulnerabilities (KEV) catalog — a critical OS command‑injection in the React Native Community CLI’s Metro development server (CVE‑2025‑11953) and an unauthenticated remote‑code‑execution (RCE) flaw in SmarterTools SmarterMail’s...

CISA’s latest KEV update elevates four distinct and high-impact vulnerabilities—two in Sangoma FreePBX, one in GitLab, and one in SolarWinds Web Help Desk—into the Known Exploited Vulnerabilities (KEV) Catalog, signaling credible evidence of active exploitation and forcing an operational...

CISA’s Known Exploited Vulnerabilities (KEV) Catalog has one more entry to worry about: on January 29, 2026 the agency added CVE-2026-1281, a code-injection vulnerability in Ivanti Endpoint Manager Mobile (EPMM). The short version: this is a classic, high-risk attack vector in a mobile device...

CISA has added a critical Fortinet authentication‑bypass bug, tracked as CVE‑2026‑24858, to its Known Exploited Vulnerabilities (KEV) Catalog after evidence that attackers abused FortiCloud Single Sign‑On (SSO) to gain administrative access across accounts — a high‑impact event that federal...

CISA’s decision to add five distinct vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog on January 26, 2026, is a clear operational red flag: the agency has determined there is evidence of active or credible exploitation, and those entries now carry mandatory remediation weight...

CISA’s Federal KEV feed has been updated to include a new high‑risk VMware flaw: CVE-2024-37079, a critical heap‑overflow / out‑of‑bounds write in Broadcom VMware vCenter Server that can lead to remote code execution, and which CISA says meets the agency’s threshold of “evidence of active...

CISA’s latest update to the Known Exploited Vulnerabilities (KEV) Catalog adds four actively exploited CVEs — a mix of application logic flaws, an insecure development-tooling exposure, a supply‑chain compromise, and a PHP file‑inclusion bug — underscoring the breadth of attack surfaces...

CISA has added a Microsoft Windows information‑disclosure vulnerability tracked as CVE‑2026‑20805 to its Known Exploited Vulnerabilities (KEV) Catalog, citing evidence of active exploitation and triggering urgent remediation expectations under Binding Operational Directive (BOD) 22‑01 for...

CISA confirmed on January 12, 2026 that it has added a high‑severity Gogs path‑traversal vulnerability, tracked as CVE‑2025‑8110, to its Known Exploited Vulnerabilities (KEV) Catalog — a move that triggers urgent remediation requirements for federal agencies under Binding Operational Directive...

CISA has added two vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog — an archival Microsoft PowerPoint code-injection flaw (CVE-2009-0556) and a newly disclosed, critical HPE OneView code-injection/remote-code-execution vulnerability (CVE-2025-37164) — citing evidence of...

CISA says it has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog — a MongoDB flaw tracked as CVE‑2025‑14847 — but independent public records show the underlying bug, vendor fixes, and active‑exploitation reports are better documented than the specific KEV entry...

CISA’s latest KEV catalog update — which adds three high-profile, actively exploited vulnerabilities impacting Cisco, SonicWall, and ASUS products — is another hard reminder that modern vulnerability management is no longer optional. Federal agencies already face binding deadlines under BOD...

CISA’s addition of a Fortinet authentication‑bypass bug to the Known Exploited Vulnerabilities (KEV) Catalog spotlights a high‑risk class of flaws: improper verification of cryptographic signatures in SAML responses. The vulnerability, tracked as CVE‑2025‑59718, affects multiple Fortinet...