CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV
Summary
CISA has added four actively exploited vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. These include flaws in Adobe ColdFusion, Joomla, and Langflow, with CISA mandating federal agencies to patch them by specific deadlines. Evidence indicates these vulnerabilities are currently being exploited in the wild.
IFF Assessment
The inclusion of actively exploited vulnerabilities in the KEV catalog signifies that attackers are already leveraging these flaws, posing an immediate threat to organizations.
Severity
A CVSS score of 10.0 indicates a critical severity, likely due to factors such as a low attack complexity, the ability to gain administrative privileges, and potentially widespread impact across the affected software.
CISA KEV: Listed as actively exploited. Federal patch due: July 10, 2026. Known ransomware use: Unknown.
Defender Context
Defenders must prioritize patching these newly added KEV vulnerabilities, particularly the Adobe ColdFusion flaw, to mitigate the risk of active exploitation. The inclusion in the KEV catalog means these vulnerabilities are a high priority for threat actors, and organizations should expect targeted attacks if unpatched.