EarlyNarratives
Pricing
Start free trialSign in
Start free trialSign in
Signal

CISA adds eight actively exploited vulnerabilities including Cisco SD-WAN flaws to KEV catalog

Evidence first: scan the strongest sources, then decide whether to go deeper.

Published 2026-04-21 06:23 UTCUpdated 2026-04-21 12:30 UTC
rss
cveexploitssecurity_advisoryincident_response
Source links open
Source links and full evidence are open here. Archive history, compare-over-time, alerts, exports, API, integrations, and workflow are paid.
BackEvidence (3)Get the free brief by emailStart free trial
No card needed for the free brief.
Evidence trail (top sources)
top sources (3 domains)domains are deduped. counts indicate coverage, not truth.
3 top sources shown
CISA flags new SD-WAN flaw as actively exploited in attacks
bleepingcomputer_all · News · bleepingcomputer.com · 2026-04-21 12:30 UTC
View all evidence
Overview

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) catalog by adding eight new vulnerabilities, including multiple affecting Cisco Catalyst SD-WAN Manager.

Entities
CiscoKenticoZimbraPaperCut
Score total
1.29
Momentum 24h
3
Posts
3
Origins
3
Source types
1
Duplicate ratio
0%
Why now
  • CISA's recent KEV catalog update signals escalating exploitation activity in April 2026.
  • Short remediation deadlines increase urgency for organizations to act swiftly.
  • Multiple sources confirm active exploitation, underscoring the threat's immediacy.
Why it matters
  • These vulnerabilities are actively exploited, posing immediate risks to organizations using affected products.
  • Federal agencies have strict deadlines to patch, reflecting the critical nature of these flaws.
  • The inclusion of widely used software like Cisco SD-WAN Manager highlights the broad impact potential.
LLM analysis
Topic mix: lowPromo risk: lowSource quality: high
Recurring claims
  • CISA added eight actively exploited vulnerabilities to its KEV catalog including Cisco Catalyst SD-WAN Manager flaws
  • CISA set federal deadlines in April-May 2026 for agencies to patch these vulnerabilities
  • Five of the eight vulnerabilities had been previously flagged as exploited
How sources frame it
  • The Hacker News: neutral
  • SecurityWeek: neutral
  • BleepingComputer: neutral
All evidence
All evidence
CISA flags new SD-WAN flaw as actively exploited in attacks
bleepingcomputer_all · bleepingcomputer.com · 2026-04-21 12:30 UTC
Organizations Warned of Exploited Cisco, Kentico, Zimbra Vulnerabilities
SecurityWeek · securityweek.com · 2026-04-21 11:19 UTC
CISA Adds 8 Exploited Flaws to KEV, Sets April-May 2026 Federal Deadlines
thehackernews · thehackernews.com · 2026-04-21 06:23 UTC
Show filters & breakdown
Posts loaded: 0Publishers: 3Origin domains: 3Duplicates: -
Showing 3 / 0
Top publishers (this list)
  • bleepingcomputer_all (1)
  • SecurityWeek (1)
  • thehackernews (1)
Top origin domains (this list)
  • bleepingcomputer.com (1)
  • securityweek.com (1)
  • thehackernews.com (1)