CISA Adds New Vulnerabilities to KEV Catalog Amid Ransomware Threats

October 20, 2025 at 07:00 PM

•

1 min read

CISA Adds New Vulnerabilities to KEV Catalog Amid Ransomware Threats — Photo: The Hacker News

TL;DR Summary

The U.S. CISA added five security flaws to its KEV catalog, including a weaponized Oracle E-Business Suite vulnerability (CVE-2025-61884) and other critical bugs in Microsoft, Kentico, and Apple, with some actively exploited in the wild. Agencies must remediate these vulnerabilities by November 10, 2025.

Topics:technology #cisa #cybersecurity #exploited-bugs #microsoft #oracle #vulnerabilities

Share this article

Five New Exploited Bugs Land in CISA's Catalog — Oracle and Microsoft Among Targets The Hacker News
CISA Adds Microsoft, Apple and Oracle Vulnerabilities to KEV Catalog The Cyber Express
Week in Review: Velociraptor and LockBit, no Hartman nomination CISO Series
U.S. CISA adds SKYSEA Client View, Rapid7 Velociraptor, Microsoft Windows, and IGEL OS flaws to its Known E... Security Affairs
CISA Alerts on Rapid7 Velociraptor Flaw Exploited in Ransomware Campaigns GBHackers News

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 3 min read

Condensed

90%

450 → 44 words

Want the full story? Read the original article

Read on The Hacker News

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights