THE Known Exploited Vulnerabilities (KEV) Catalog, maintained by CISA, serves as an authoritative source for vulnerabilities that have been exploited in the wild, aiding organizations in managing and prioritizing vulnerabilities. The catalog offers formats such as CSV and JSON and advises users to follow vendor instructions for mitigations. An example is CVE-2026-45498, a Microsoft Defender vulnerability that allows denial of service and was noted on May 20, 2026, with a due date for action by June 3, 2026. The catalog emphasizes staying updated through subscriptions.
CISA adds CVE-2026-45498 to KEV, urges Defender patch by June
CyberSIXT Evidence Panel
Article by CyberSIXT
Timeline Coverage
Swipe to explore timeline
-
Microsoft fixes two zero day Defender bugs under active attack
securityweek.com
-
CISA adds CVE-2026-45498 to KEV, urges Defender patch by June
www.cisa.gov