CISA adds five KEV flaws and sets FCEB remediation deadline
Public Sector Action
Summary
Hide ▲
Show ▼
CISA added CVE-2025-61884 in Oracle E-Business Suite to its Known Exploited Vulnerabilities (KEV) Catalog after confirming it is being actively exploited. The flaw is an unauthenticated SSRF in the Oracle Configurator runtime and is tied to July attacks and a leaked exploit associated with ShinyHunters and the Scattered Lapsus$ extortion group. Federal agencies must patch the issue by November 10, 2025. The same reporting distinguishes this activity from the separate CVE-2025-61882 campaign against /OA_HTML/SyncServlet, which is attributed to Clop.
Related Happenings
Microsoft SharePoint remote code execution (CVE-2026-45659)
Vulnerability
First: 26.05.2026 14:49
Last: 26.05.2026 14:49
Sources 1
About this happening:
**Microsoft SharePoint** **CVE-2026-45659** is a **remote code execution** vulnerability that lets an **authenticated attacker** with **Site Member** permissions run code over the...
Microsoft SharePoint remote code execution (CVE-2026-45659)
VulnerabilityAbout this happening: **Microsoft SharePoint** **CVE-2026-45659** is a **remote code execution** vulnerability that lets an **authenticated attacker** with **Site Member** permissions run code over the...
CISA orders FCEB patching for CVE-2026-9082
Public Sector Action
First: 26.05.2026 11:46
Last: 26.05.2026 11:46
Sources 1
About this happening:
**CISA** added **CVE-2026-9082** to the **KEV Catalog** and ordered **FCEB agencies** to patch **Drupal** by **May 27**, turning an actively exploited flaw into a mandatory federa...
CISA orders FCEB patching for CVE-2026-9082
Public Sector ActionAbout this happening: **CISA** added **CVE-2026-9082** to the **KEV Catalog** and ordered **FCEB agencies** to patch **Drupal** by **May 27**, turning an actively exploited flaw into a mandatory federa...
Langflow and Trend Micro Apex One exploited flaws (multiple vulnerabilities)
Vulnerability
First: 22.05.2026 08:47
Last: 22.05.2026 08:47
Sources 1
About this happening:
**CISA** added **CVE-2025-34291** in **Langflow** and **CVE-2026-34926** in **Trend Micro Apex One** to the **KEV catalog** after evidence of **active exploitation**. The Langflow...
Langflow and Trend Micro Apex One exploited flaws (multiple vulnerabilities)
VulnerabilityAbout this happening: **CISA** added **CVE-2025-34291** in **Langflow** and **CVE-2026-34926** in **Trend Micro Apex One** to the **KEV catalog** after evidence of **active exploitation**. The Langflow...
Windows BitLocker YellowKey security feature bypass (CVE-2026-45585)
Vulnerability
First: 20.05.2026 11:28
Last: 20.05.2026 11:28
Sources 1
About this happening:
**CVE-2026-45585** is a **BitLocker security feature bypass** affecting **Windows 11 26H1/24H2/25H2** and **Windows Server 2025**, and Microsoft has already issued **mitigations**...
Windows BitLocker YellowKey security feature bypass (CVE-2026-45585)
VulnerabilityAbout this happening: **CVE-2026-45585** is a **BitLocker security feature bypass** affecting **Windows 11 26H1/24H2/25H2** and **Windows Server 2025**, and Microsoft has already issued **mitigations**...
CISA KEV action for CVE-2026-31431 and FCEB remediation
Public Sector Action
First: 03.05.2026 09:26
Last: 03.05.2026 09:26
Sources 1
About this happening:
CISA added **CVE-2026-31431** to its **KEV catalog**, putting **Federal Civilian Executive Branch (FCEB)** agencies on notice to remediate an actively exploited Linux privilege-es...
CISA KEV action for CVE-2026-31431 and FCEB remediation
Public Sector ActionAbout this happening: CISA added **CVE-2026-31431** to its **KEV catalog**, putting **Federal Civilian Executive Branch (FCEB)** agencies on notice to remediate an actively exploited Linux privilege-es...
Timeline
-
20.10.2025 22:00 3 articles · 7mo ago
CISA adds Oracle EBS flaw and four other bugs to KEV Catalog
Legal Policy Action UpdateCISA added CVE-2025-61884 in Oracle E-Business Suite (EBS) and four other security flaws to the Known Exploited Vulnerabilities (KEV) Catalog, confirming that the Oracle Configurator SSRF bug was weaponized in real-world attacks and directing Federal Civilian Executive Branch (FCEB) agencies to remediate the listed vulnerabilities by November 10, 2025.
Show sources
- Five New Exploited Bugs Land in CISA's Catalog — Oracle and Microsoft Among Targets — thehackernews.com — 20.10.2025 22:00
- Five New Exploited Bugs Land in CISA's Catalog — Oracle and Microsoft Among Targets — thehackernews.com — 20.10.2025 22:00
- CISA confirms hackers exploited Oracle E-Business Suite SSRF flaw — www.bleepingcomputer.com — 21.10.2025 22:15