U.S. CISA Adds Trend Micro Apex One and Langflow to Known Exploited Vulnerabilities Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added vulnerabilities in Trend Micro Apex One and Langflow to its Known Exploited Vulnerabilities (KEV) catalog. The specific flaw CVE-2025-34291, assigned a CVSS score of 9.4, was included among the entries. The update also referenced previously added vulnerabilities in Windows Shell and ConnectWise ScreenConnect, though no additional technical details or exploitation impacts were provided. No exact dates for the additions or observed attacks were disclosed in the notice. The catalog serves as a repository for actively exploited vulnerabilities requiring federal agency remediation.