CISA Adds Vulnerabilities Affecting Apple, Craft CMS, and Laravel Livewire to KEV Catalog

CISA added five vulnerabilities affecting Apple, Craft CMS, and Laravel Livewire to its Known Exploited Vulnerabilities (KEV) catalog due to evidence of active exploitation. The agency mandated federal agencies to apply patches by 3 April 2026, while also raising mitigation priority for non-federal organizations. The vulnerabilities pose risks of remote code execution (RCE). No specific CVE identifiers or technical details of the flaws were disclosed in the notice. The inclusion in the KEV catalog underscores the urgency of addressing these security issues across affected systems.