CISA Alerts Organizations to Actively Exploited Software Vulnerabilities
The Cybersecurity and Infrastructure Security Agency (CISA) has updated its Known Exploited Vulnerabilities (KEV) Catalog with two new entries, CVE-2026-48939 and CVE-2026-56291. These vulnerabilities, found in iCagenda and Balbooa Forms, are unrestricted file upload flaws that are actively being exploited. CISA urges all organizations to prioritize their immediate remediation to mitigate potential risks.
Want more?
Open NewsSnap.ai for the full app experience, including audio, personalization, and more news tools.