CISA Adds 8 Exploited Flaws to KEV, Sets April-May 2026 Federal Deadlines

[email protected] (The Hacker News) 2026-04-21T11:53:00+00:00 View Original

Full Report

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added eight new vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, including three flaws impacting Cisco Catalyst SD-WAN Manager, citing evidence of active exploitation. The list of vulnerabilities is as follows - CVE-2023-27351 (CVSS score: 8.2) - An improper authentication vulnerability in PaperCut

Analysis Summary