CISA Catalog Adds 8 Exploited Flaws

The US Cybersecurity and Infrastructure Security Agency (CISA) just beefed up its catalog of actively exploited software flaws by adding eight new entries, including three Cisco vulnerabilities and a high-severity PaperCut flaw. Federal agencies now have until April and May 2026 to mitigate these risks.

https://osintsights.com/cisa-catalog-adds-8-exploited-flaws?utm_source=mastodon&utm_medium=social

#Cisa #ExploitedVulnerabilities #KnownExploitedVulnerabilitiesCatalog #KevCatalog #Cisco

CISA has added two new Dassault Systèmes DELMIA Apriso vulnerabilities to the Known Exploited Vulnerabilities Catalog:
🛠 CVE-2025-6204 – Code Injection
🛠 CVE-2025-6205 – Missing Authorization
Both are under active exploitation and pose serious risks for manufacturing and enterprise networks.

CISA’s BOD 22-01 mandates federal patching, but every org should act fast.

💬 How do you prioritize KEV-listed vulnerabilities in your patching workflow? Follow @technadu for credible infosec updates.

#CISA #KEVCatalog #CyberSecurity #DELMIAApriso #DassaultSystemes #Vulnerability #PatchNow #InfoSec #CVE20256204 #CVE20256205 #ThreatIntel #CyberAwareness

🚨 CISA Updates KEV Catalog – 5 New Vulnerabilities Added
Actively exploited vulnerabilities now include Apple, Microsoft SMB Client, Oracle E-Business SSRF, and Kentico Xperience servers.

💡 Timely remediation is essential to protect enterprise networks. KEV Catalog prioritization should be part of your vulnerability management program.

💬 How is your organization implementing KEV patches? Comment & follow TechNadu for continuous cyber alerts.

#CyberSecurity #CISA #KEVCatalog #ZeroDay #PatchManagement #VulnerabilityManagement #MicrosoftSecurity