CISA Adds One Known Exploited Vulnerability to Catalog
Summary
CISA has added CVE-2026-0257, a Palo Alto Networks PAN-OS authentication bypass vulnerability, to its Known Exploited Vulnerabilities (KEV) Catalog. This inclusion is due to evidence of active exploitation, posing significant risks to federal networks. CISA urges all organizations to prioritize the remediation of these cataloged vulnerabilities as part of their security practices.
IFF Assessment
The addition of a known exploited vulnerability to the KEV catalog indicates an active threat that defenders must address.
Severity
CISA KEV: Listed as actively exploited. Federal patch due: June 01, 2026. Known ransomware use: Unknown.
Defender Context
This article highlights the importance of staying updated with CISA's KEV catalog, as vulnerabilities listed there are actively being exploited. Defenders should prioritize patching and mitigating CVE-2026-0257, particularly in environments using Palo Alto Networks PAN-OS, to prevent successful attacks.