> EssentialInfoSec
Home / Feb 21, 2026 / Story
0
#9 CISA Alerts vulnerability February 20, 2026 at 12:00 UTC

CISA Adds Two Known Exploited Vulnerabilities to Catalog

By CISA

AI Summary

CISA added two RoundCube Webmail vulnerabilities to its Known Exploited Vulnerabilities catalog: CVE-2025-49113 (deserialization flaw) and CVE-2025-68461 (cross-site scripting). Federal agencies must patch these actively exploited vulnerabilities under Binding Operational Directive 22-01.

Read full article → https://www.cisa.gov/news-events/alerts/2026/02/20…

Relevance score: 80.0/100

# More from February 21

  1. 1
    FBI: $20 Million Losses Caused by 700 ATM Jackpotting Attacks in 2025 SecurityWeek
  2. 2
    BeyondTrust Vulnerability Exploited in Ransomware Attacks SecurityWeek
  3. 3
    Romanian hacker faces up to 7 years for breaching Oregon emergency management department The Record
  4. 4
    Ukrainian National Sentenced to 5 Years in North Korea IT Worker Fraud Case The Hacker News
  5. 5
    Former Google Engineers Indicted Over Trade Secret Transfers to Iran The Hacker News
  6. 6
    PromptSpy Android Malware Abuses Gemini AI to Automate Recent-Apps Persistence The Hacker News
  7. 7
    Japanese tech giant Advantest hit by ransomware attack BleepingComputer
  8. 8
    Attackers Use New Tool to Scan for React2Shell Exposure Dark Reading
  9. 10
    Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution The Hacker News