CISA Adds Exploited Magento RCE Flaw CVE-2026-45247 to KEV Catalog
Summary
CISA has added a critical Remote Code Execution (RCE) vulnerability in the Mirasvit Cache Warmer Magento extension, identified as CVE-2026-45247, to its Known Exploited Vulnerabilities (KEV) catalog. This decision was made due to reports of the flaw being actively exploited in the wild.
IFF Assessment
The active exploitation of a critical RCE vulnerability indicates a direct threat to systems, making it bad news for defenders.
Severity
The CVSS score of 9.8 indicates a critical severity, likely due to a high attack vector (e.g., network-exploitable), low complexity, and significant impact on confidentiality, integrity, and availability.
CISA KEV: Listed as actively exploited. Federal patch due: June 06, 2026. Known ransomware use: Unknown.
Defender Context
Defenders should prioritize patching or mitigating CVE-2026-45247, especially if they utilize the Mirasvit Cache Warmer Magento extension. The inclusion in CISA's KEV catalog signifies that known exploits exist, making systems vulnerable to immediate attack.