CISA Adds ConnectWise and Windows Vulnerabilities to Exploited Flaws Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has included two new security vulnerabilities in its Known Exploited Vulnerabilities catalog. These flaws, affecting ConnectWise ScreenConnect and Microsoft Windows, have been added due to evidence of active exploitation. Federal agencies are mandated to patch these issues by May 12, 2026.