ACCORDING to CISA, four security flaws have been added to its Known Exploited Vulnerabilities catalog, with active exploitation evidenced in the wild.
The quartet comprises CVE-2026-2441, a use-after-free vulnerability in Google Chrome with a CVSS score of 8.8 that could allow heap corruption via a crafted HTML page; CVE-2024-7694, an arbitrary file upload flaw in TeamT5 ThreatSonar Anti-Ransomware versions 3.4.5 and earlier (CVSS 7.2) that could enable arbitrary system command execution on the server; CVE-2020-7796, a
server-side request forgery in Synacor Zimbra Collaboration Suite (CVSS 9.8) that could let an attacker obtain unauthorized access to sensitive information; and CVE-2008-0015, a stack-based buffer overflow in Microsoft Windows Video ActiveX Control (CVSS 8.8) that could permit remote code execution via a crafted web page.
The update follows Google’s acknowledgement that an exploit for CVE-2026-2441 exists in the wild, and notes that for CVE-2020-7796, past exploitation activity involving around 400 IPs was reported in March 2025 by GreyNoise. Federal Civilian Executive Branch agencies are advised to apply fixes by 10 March 2026 for optimal protection.