CISA Adds 6 Known Exploited Flaws in Fortinet, Microsoft, and Adobe Software

The Hacker NewsThe Hacker News
April 14, 2026 at 05:39 AM

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added half a dozen security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The list of vulnerabilities is as follows -

CVE-2026-21643 (CVSS score: 9.1) -  An SQL injection vulnerability in  Fortinet FortiClient EMS that could allow an unauthenticated attacker to

Read Full Article
View on Hacker News

Related Articles

Introspective Diffusion Language Models

Introspective Diffusion Language Models

Comments

Hacker NewsApr 14, 2026, 07:57 AM
The secrets of the Shinkansen

The secrets of the Shinkansen

Comments

Hacker NewsApr 14, 2026, 06:41 AM
Can Claude Fly a Plane?

Can Claude Fly a Plane?

Comments

Hacker NewsApr 14, 2026, 06:32 AM
Distributed DuckDB Instance

Distributed DuckDB Instance

Comments

Hacker NewsApr 14, 2026, 06:31 AM
Roblox devs now need a subscription to share their games freely

Roblox devs now need a subscription to share their games freely

Comments

Hacker NewsApr 14, 2026, 06:04 AM
ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers

ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers

A critical security vulnerability impacting ShowDoc, a document management and collaboration service popular in China, has come under active exploitation in the wild. The vulnerability in question is CVE-2025-0520 (aka CNVD-2020-26585), which carries a CVSS score of 9.4 out of 10.0. It relates to a case of unrestricted file upload that stems from improper validation of

The Hacker NewsApr 14, 2026, 05:50 AM