U .S. Cybersecurity and Infrastructure Security Agency (CISA) added five flaws to its Known Exploited Vulnerabilities catalog, spanning Apple, Craft CMS and Laravel Livewire, with CVSS scores ranging from 7.8 to 10.0. The entries include CVE-2025-31277 (Apple, CVSS 8.8), CVE-2025-43510 (Apple, CVSS 7.8), CVE-2025-43520 (Apple, CVSS 8.8), CVE-2025-32432 (Craft CMS, CVSS 10.0), and CVE-2025-54068 (Laravel Livewire, CVSS 9.8).
The KEV additions follow reports from Google Threat Intelligence Group, iVerify and Lookout about an iOS exploit kit named DarkSword that targets these vulnerabilities alongside others. In addition, in April 2025 Orange Cyberdefense’s CSIRT reported two Craft CMS flaws—CVE-2025-32432 and CVE-2024-58136—being exploited in the wild to breach servers, though the Craft CMS vulnerability itself has since been addressed through updated versions. CISA has ordered federal agencies to fix the identified flaws by 3 April 2026.