CISA added Ivanti, SolarWinds, and Workspace ONE vulnerabilities to the KEV list after confirmed exploitation in the wild.

jimguckin@infosec.exchange

CISA added Ivanti, SolarWinds, and Workspace ONE vulnerabilities to the KEV list after confirmed exploitation in the wild.

When a vuln hits KEV, attackers are already using it.

Time to patch immediately!

CISA shortens patch deadline for critical Ivanti, SolarWinds bugs

The Cybersecurity and Infrastructure Security Agency (CISA) gave all federal civilian agencies until Thursday to patch CVE-2025-26399 — a critical vulnerability impacting the popular SolarWinds Web Help Desk.

(therecord.media)

#CyberSecurity #ThreatIntel #PatchNow