Zero-Day Vulnerabilitiesofficial·CISA Cybersecurity Advisories

CISA Adds One Known Exploited Vulnerability to Catalog

Published: 22.05.2026 14:00Fetched: 23.05.2026 02:42

Summary

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-9082 Drupal Core SQL Injection Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise. Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the KEV Catalog as a living list of known Common Vulnera

Source

Source: CISA Cybersecurity Advisories

URL: https://www.cisa.gov/news-events/alerts/2026/05/22/cisa-adds-one-known-exploited-vulnerability-catalog

Trust Level: ★★★★★

Read original ↗← Back