In 2025, the growth of known exploited vulnerabilities accelerated after a stabilization period, with more vulnerabilities being added to CISA’s KEV catalog than in previous years. Ransomware groups continue to exploit a range of vulnerabilities, particularly targeting major vendors like Microsoft, Oracle, and Fortinet. #CISAKEV #RansomwareVulnerabilities
Keypoints
- Vulnerabilities added to CISA’s KEV catalog increased significantly in 2025, reaching 245 new entries.
- Older vulnerabilities, including CVE-2007-0671 and CVE-2002-0367, continued to be exploited, with the latter linked to ransomware activity.
- Twenty-four vulnerabilities added in 2025 are known to be exploited by ransomware groups such as CL0P and others.
- Microsoft, Apple, Cisco, and Google Chromium remained among the top vendors with most KEV additions in 2025.
- Common software weaknesses like OS Command Injection and Deserialization of Untrusted Data were frequently exploited vulnerabilities in 2025.
Read More: https://thecyberexpress.com/cisa-known-exploited-vulnerabilities-kev-2025/