cisa.gov

CISA Adds One Known Exploited Vulnerability to Catalog (opens in new tab)

Covered by 4 sources See all sources covering this story including BleepingComputer, The Hacker News

CISA Adds One Known Exploited Vulnerability to Catalog ggaylor May 22, 2026 Release DateMay 22, 2026 DescriptionCISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.CVE-2026-9082 Drupal Core SQL Injection VulnerabilityThis type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise. established the KEV Catalog as a living list of known Common Vu...

Read the original article
Sign in to keep reading the full article.
Sign UpLog In

Covered in 4 articles

BleepingComputer·

CISA orders feds to patch actively exploited Drupal vulnerability

Discussed on Hacker News
Feeds
The Hacker News·

Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV

Feeds
Security Affairs·

U.S. CISA adds a flaw in Drupal Core to its Known Exploited Vulnerabilities catalog

Feeds
View all 4 ›

Keyboard Shortcuts

Navigation

Next / previous post
j/k
Open post
oorEnter
Preview post
v

Post Actions

Love post
a
Like post
l
Dislike post
d
Undo reaction
u
Save / unsave
s

Recommendations

Add interest / feed
Enter
Not interested
x

Go to

Home
gh
Interests
gi
Feeds
gf
Likes
gl
History
gy
Changelog
gc
Settings
gs
Discover
gb
Search
/

General

Show this help
?
Submit feedback
!
Close modal / unfocus
Esc

Press ? anytime to show this help