CISA Adds Four Vulnerabilities to Known Exploited Vulnerabilities Catalog

On February 11, 2026, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added four vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog due to their active exploitation. Among them is CVE-2026-2441 (CVSS score: 8.8), a use-after-free flaw in Google Chrome that allows a remote attacker to exploit heap memory. Technical details of the other three vulnerabilities are not specified in the extract. The CISA has not provided information on the targets or malicious actors involved. Source: https://thehackernews.com/2026/02/cisa-flags-four-security-flaws-under.html