LOWVulnerability
Global

CISA Adds 6 Known Exploited Flaws in Fortinet, Microsoft, and Adobe Software

·Source: The Hacker News

Updated:

Executive Summary

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added half a dozen security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The list of vulnerabilities is as follows - CVE-2026-21643 (CVSS score: 9.1) - An SQL injection vulnerability in Fortinet FortiClient EMS that could allow an unauthenticated attacker to

Analysis

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added half a dozen security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The list of vulnerabilities is as follows - CVE-2026-21643 (CVSS score: 9.1) - An SQL injection vulnerability in Fortinet FortiClient EMS that could allow an unauthenticated attacker to

Indicators of Compromise (1)

CVE (1)
CVE-2026-21643
NVDMITRE CVE
Source Attribution

Originally published by The Hacker News on Apr 14, 2026.

Related Threats

CRITICALVulnerability

Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited – No Patch Available

Cisco has warned that a high-severity security flaw impacting Catalyst SD-WAN Manager has come under active exploitation. The vulnerability, tracked as CVE-2026-20245, carries a CVSS score of 7.8 out of a maximum of 10.0. It affects the following deployment types - On-Prem Deployment Cisco SD-WAN Cloud-Pro Cisco SD-WAN Cloud (Cisco Managed) Cisco SD-WAN for Government (FedRAMP) "A

CVE-2026-20245
The Hacker News
MEDIUMVulnerability

Bipartisan AI Bill Targets Frontier Labs and State Regulators

<img src="https://ismg-cdn.nyc3.cdn.digitaloceanspaces.com/articles/bipartisan-ai-bill-targets-frontier-labs-state-regulators-image_small-1-a-31903.jpg" align=right hspace=4><b>House Draft Targets Frontier Labs with Audits While Blocking State AI Laws</b><br>A House discussion draft would impose safety mandates and independent audits on the country's most powerful AI developers, but the fight over

Bank Info Security
MEDIUMVulnerability

Passengers Seek Full Appeals Court Review in CrowdStrike Case

<img src="https://ismg-cdn.nyc3.cdn.digitaloceanspaces.com/articles/passengers-seek-full-appeals-court-review-in-crowdstrike-case-image_small-9-a-31902.jpg" align=right hspace=4><b>Appeal Faces Steep Statistical Odds Given Previous Court Rulings</b><br>Passengers affected by the July 2024 CrowdStrike outage are making a longshot bid to get their case reheard en banc, arguing that claims tied to th

Bank Info Security