Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

CISA adds two Roundcube flaws to KEV catalog

Public Sector Action
First reported
Last updated
Happening score
H score 55
2 unique sources, 2 articles

Summary

Hide ▲

CISA added two Roundcube webmail flaws to the KEV catalog after citing active exploitation, increasing urgency for federal remediation. CVE-2025-49113 is a CVSS 9.9 deserialization flaw that can enable remote code execution, and CVE-2025-68461 is a CVSS 7.2 XSS flaw. FCEB agencies must remediate identified vulnerabilities by March 13, 2026.

Related Happenings

Pretalx stored XSS (CVE-2026-41241)

Vulnerability
First: 27.05.2026 17:30 Last: 27.05.2026 17:30 Sources 1

About this happening: A high-severity **stored XSS** in **Pretalx** tracked as **CVE-2026-41241** let registered speakers inject code that could run when an organizer searched a submission, creating **...

Open Happening

CISA orders FCEB patching for CVE-2026-9082

Public Sector Action
First: 26.05.2026 11:46 Last: 26.05.2026 11:46 Sources 1

About this happening: **CISA** added **CVE-2026-9082** to the **KEV Catalog** and ordered **FCEB agencies** to patch **Drupal** by **May 27**, turning an actively exploited flaw into a mandatory federa...

Open Happening

Langflow and Trend Micro Apex One exploited flaws (multiple vulnerabilities)

Vulnerability
First: 22.05.2026 08:47 Last: 22.05.2026 08:47 Sources 1

About this happening: **CISA** added **CVE-2025-34291** in **Langflow** and **CVE-2026-34926** in **Trend Micro Apex One** to the **KEV catalog** after evidence of **active exploitation**. The Langflow...

Open Happening

SAP May 2026 security updates for Commerce Cloud and S/4HANA (15 vulnerabilities)

Security Patch Release
First: 12.05.2026 14:04 Last: 12.05.2026 14:04 Sources 1

About this happening: **SAP** released its **May 2026 security updates** for **15 vulnerabilities** across **Commerce Cloud**, **S/4HANA**, and other products, including **two critical flaws** that can...

Open Happening

CISA KEV listing and FCEB firewall directive for CVE-2026-0300

Public Sector Action
First: 07.05.2026 13:57 Last: 07.05.2026 13:57 Sources 1

About this happening: **CISA** added **CVE-2026-0300** to the **KEV Catalog** and ordered **FCEB agencies** to secure vulnerable firewalls by **May 9, 2026**. The federal directive makes the exploited...

Open Happening

Timeline

  1. 21.02.2026 09:21 1 articles · 3mo ago

    Roundcube CVE-2025-49113 exploit is offered for sale

    Exploitation Observed

    An exploit for Roundcube CVE-2025-49113 was made available for sale, and FearsOff said attackers had already diffed and weaponized the flaw within 48 hours of public disclosure. The vulnerability allows authenticated users to trigger remote code execution through the unvalidated `_from` parameter in `program/actions/settings/upload.php`.

    Show sources
    Open in new tab
  2. 21.02.2026 09:21 3 articles · 3mo ago

    CISA adds Roundcube flaws to the KEV catalog

    Legal Policy Action Update

    CISA added CVE-2025-49113 and CVE-2025-68461 to the Known Exploited Vulnerabilities (KEV) catalog after citing active exploitation of Roundcube webmail software, and Federal Civilian Executive Branch (FCEB) agencies were directed to remediate the identified vulnerabilities by March 13, 2026. CVE-2025-49113 carries a CVSS score of 9.9, and CVE-2025-68461 carries a CVSS score of 7.2.

    Show sources
    Open in new tab