Home / Jul 09, 2026 / Story
0
#2 The Hacker News general July 08, 2026 at 05:33 UTC

CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV

By [email protected] (The Hacker News)

AI Summary

CISA added four actively exploited vulnerabilities to its KEV catalog, including CVE-2026-48282 (CVSS 10.0), a path traversal RCE flaw in Adobe ColdFusion, plus flaws in Langflow and two Joomla extensions. Federal agencies were given until July 10 to patch, reflecting confirmed in-the-wild exploitation. Organizations running ColdFusion or Langflow AI agent frameworks should prioritize these patches immediately.

Relevance score: 87.0/100

# More from July 09