Kev Catalog
The latest Kev Catalog coverage — news, analysis, and updates from the WindowsNews.AI desk.
CISA Adds Two RCE Flaws to KEV: Langflow CVE-2025-34291 and Trend Micro CVE-2026-34926
CISA updated its Known Exploited Vulnerabilities (KEV) catalog on May 21, 2026, adding two high-severity flaws that are under active attack. The vulnerabilities—CVE-2025-34291 in the Langflow...
CISA Adds 17-Year-Old Office Flaw to KEV Catalog: CVE-2009-0238 Still Actively Exploited
The Cybersecurity and Infrastructure Security Agency has added two Microsoft vulnerabilities to its Known Exploited Vulnerabilities Catalog, including a 17-year-old Office flaw that attackers...
CVE-2025-47813 Exploited in Wild: Patch Wing FTP Server to 7.4.5 Now
The Cybersecurity and Infrastructure Security Agency has added CVE-2025-47813, an information disclosure vulnerability in Wing FTP Server, to its Known Exploited Vulnerabilities Catalog. This action...
CISA Adds 3 Critical Windows Vulnerabilities to KEV Catalog: Patch Now to Prevent Active Exploitation
The Cybersecurity and Infrastructure Security Agency has added three high-severity Windows vulnerabilities to its Known Exploited Vulnerabilities catalog, signaling active exploitation in the wild....
CISA KEV Update: 5 New Actively Exploited Vulnerabilities Target IoT, ICS & Apple Devices
The Cybersecurity and Infrastructure Security Agency (CISA) has added five new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, signaling active exploitation by threat actors...
CISA Urges Immediate Patching for Exploited Qualcomm & VMware Flaws
The Cybersecurity and Infrastructure Security Agency (CISA) has escalated warnings for two critical vulnerabilities now actively exploited in the wild, adding them to its Known Exploited...
CISA KEV Update: Critical Cisco Catalyst SD-WAN Flaws Demand Immediate Patching
The Cybersecurity and Infrastructure Security Agency (CISA) has escalated the urgency for network administrators worldwide with its latest Known Exploited Vulnerabilities (KEV) Catalog update. On...
CVE-2026-25108: Critical FileZen Vulnerability Added to CISA KEV Catalog
The Cybersecurity and Infrastructure Security Agency (CISA) has escalated the urgency surrounding CVE-2026-25108 by adding it to its Known Exploited Vulnerabilities (KEV) Catalog, signaling that this...
CISA Urges Immediate Roundcube Patching: Critical Webmail Vulnerabilities Actively Exploited
The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical warning to organizations worldwide, adding two severe Roundcube Webmail vulnerabilities to its Known Exploited...
GitLab SSRF CVE-2021-22205 added to CISA KEV; Dell zero-day also flagged.
The Cybersecurity and Infrastructure Security Agency (CISA) has added two critical vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog this week, signaling active exploitation in the...
CISA KEV Catalog Adds 4 Critical CVEs: ActiveX, Zimbra, ThreatSonar & Chromium Exploits
The Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities (KEV) Catalog with four critical CVEs actively being exploited in the wild, highlighting a...
CVE-2026-1731: Critical Pre-auth RCE in BeyondTrust RS PRA Demands Immediate Patching
The cybersecurity landscape has been jolted by the urgent addition of CVE-2026-1731 to the Cybersecurity and Infrastructure Security Agency's (CISA) Known Exploited Vulnerabilities (KEV) Catalog....