importantSYS.SOURCE: The Hacker News• 2026-07-08T11:03:12+05:30
CISA Updates KEV Catalog with Four Actively Exploited Vulnerabilities in Adobe, Joomla, and Langflow
#CISA#KEV Catalog#Remote Code Execution#Web Shell#Patch Management
CISA added four actively exploited vulnerabilities in Adobe, Joomla, and Langflow to its KEV catalog, with CVSS scores up to ., requiring urgent patching by FCEB agencies. Exploitation attempts include remote code execution, web shell deployment, and credential theft across multiple platforms.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.
The vulnerabilities are listed below -
CVE-2026-48282 (CVSS score: 10.0) - A path traversal vulnerability in Adobe ColdFusion that could lead to arbitrary code execution in the context of the
*** END OF TRANSMISSION ***