CISA Adds One Known Exploited Vulnerability to Catalog

CISA updated its Known Exploited Vulnerabilities (KEV) Catalog, adding a new vulnerability. The newly added vulnerability is CVE-2025-61932, concerning Motex LANSCOPE Endpoint Manager's improper verification. This vulnerability is actively exploited and represents a significant risk, particularly for the federal enterprise. The KEV Catalog is a list of known vulnerabilities that pose significant threats. Binding Operational Directive 22-01 mandates FCEB agencies remediate KEV catalog vulnerabilities by specific deadlines. This directive aims to shield FCEB networks from active cyber threats. Remediation is crucial for protecting against potential exploits. CISA encourages all organizations to prioritize the timely fixing of KEV Catalog vulnerabilities. Implementing these fixes is a key part of effective vulnerability management strategies. CISA will regularly update the catalog as new vulnerabilities meeting the criteria emerge.