CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV

Summary

CISA has added four actively exploited vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog. These include flaws in Adobe ColdFusion, Joomla, and Langflow, with CISA mandating federal agencies to patch them by specific deadlines. Evidence indicates these vulnerabilities are currently being exploited in the wild.

IFF Assessment

FOE

The inclusion of actively exploited vulnerabilities in the KEV catalog signifies that attackers are already leveraging these flaws, posing an immediate threat to organizations.

Severity

10.0 Critical

A CVSS score of 10.0 indicates a critical severity, likely due to factors such as a low attack complexity, the ability to gain administrative privileges, and potentially widespread impact across the affected software.

CISA KEV: Listed as actively exploited. Federal patch due: July 10, 2026. Known ransomware use: Unknown.

Defender Context

Defenders must prioritize patching these newly added KEV vulnerabilities, particularly the Adobe ColdFusion flaw, to mitigate the risk of active exploitation. The inclusion in the KEV catalog means these vulnerabilities are a high priority for threat actors, and organizations should expect targeted attacks if unpatched.

Read Full Story →