CISA Adds Actively Exploited VMware Aria Operations Flaw CVE-2026-22719 to KEV Catalog
Summary
CISA has added a critical command injection vulnerability affecting VMware Aria Operations, identified as CVE-2026-22719, to its Known Exploited Vulnerabilities (KEV) catalog. This decision was made due to evidence of active exploitation in the wild.
IFF Assessment
FOE
The active exploitation of a critical vulnerability means attackers are actively leveraging this flaw to compromise systems, posing a direct threat to organizations.
Severity
8.1
High
Defender Context
This advisory highlights the immediate need for organizations using VMware Aria Operations to patch or mitigate CVE-2026-22719. Defenders should proactively scan their environments for indicators of compromise related to this vulnerability and prioritize its remediation to prevent successful attacks.