THREATOPS
THREAT OPSThreat News › CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA Adds Two Known Exploited Vulnerabilities to Catalog

medcisa_advisoriesPublished 2026-07-10

<p>CISA has added two new vulnerabilities to its <a href="https://www.cisa.gov/known-exploited-vulnerabilities-catalog">Known Exploited Vulnerabilities (KEV) Catalog</a>, based on evidence of active exploitation.</p> <ul> <li><a href="https://www.cve.org/CVERecord?id=CVE-2026-48939" target="_blank">CVE-2026-48939</a> iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability</li> <li><

MITRE ATT&CK techniques

Indicators of compromise

Original source: https://www.cisa.gov/news-events/alerts/2026/07/10/cisa-adds-two-known-exploited-vulnerabilities-catalog