CISA Adds One Known Exploited Vulnerability to Catalog
Summary
CISA has added CVE-2026-33825, a Microsoft Defender vulnerability related to insufficient granularity of access control, to its Known Exploited Vulnerabilities (KEV) Catalog. This action stems from evidence of active exploitation, highlighting the vulnerability's significant risk to federal agencies.
IFF Assessment
The addition of a new actively exploited vulnerability to the KEV catalog represents an increased threat and risk to organizations.
Severity
CISA KEV: Listed as actively exploited. Federal patch due: May 06, 2026. Known ransomware use: Unknown.
Defender Context
Organizations, particularly federal agencies, must prioritize patching CVE-2026-33825 to mitigate the risk of active exploitation. The inclusion of this vulnerability in CISA's KEV catalog indicates it is actively being leveraged by threat actors and should be treated as a high-priority remediation item.