CISA adds three known exploited vulnerabilities to catalog
CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation: CVE-2025-9242 WatchGuard Firebox Out-of-Bounds Write Vulnerability, CVE-2025-12480 Gladinet Triofox Improper Access Control Vulnerability, CVE-2025-62215 Microsoft Windows Race Condition Vulnerability.
These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.