CISA added FileZen CVE-2026-25108 (CVSS 8.7) to its KEV catalog after active exploitation, affecting versions 4.2.1–4.2.8 and ...

CISA has updated its KEV catalog entry for the BeyondTrust flaw CVE-2026-1731 to inform organizations about ransomware ...

TeamT5 has confirmed that the vulnerability added recently by CISA to its KEV catalog was likely exploited by Chinese threat actors.

Cybersecurity and Infrastructure Security Agency (CISA) has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-49035 ...

Cloud security vulnerabilities are exposing enterprise workloads to exploited flaws. A new report urges exposure management ...

The Vulnerability Time Gap When CISA adds a new CVE to the Known Exploited Vulnerabilities catalog, a clock starts ticking. Security teams must understand the vulnerability, determine if they are ...

CISA adds four actively exploited vulnerabilities to its KEV catalog, including Chrome RCE, Zimbra SSRF, Windows ActiveX, and ...

The Cybersecurity and Infrastructure Security Agency issued a directive Wednesday ordering civilian agencies to secure and ...

Cybersecurity and Infrastructure Security Agency (CISA) has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-1316 ...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies to patch their systems within three days against a maximum-severity Dell vulnerability that has been under ...

Hardcoded credential flaw in RecoverPoint already abused in espionage campaign Uncle Sam's cyber defenders have given federal agencies just three days to patch a maximum-severity Dell bug that's been ...

On September 11th, CISA issued a massive security update, publishing eleven industrial control systems advisories, and at the same time, it added another harmful vulnerability to its Known Exploited ...