CISA Adds One Known Exploited Vulnerability to Catalog
Summary: CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.
Why it matters: This matters if it changes how teams think about model governance, safety work, monitoring, or regulatory exposure around deployed AI systems.
What to watch: Watch for follow-on technical guidance, deployment constraints, evaluation details, or signs that the announcement changes actual production practice rather than just policy language.