The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a recently disclosed vulnerability in FileZen to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.
The vulnerability, tracked as CVE-2026-25108 (CVSS v4 score: 8.7), is a case of operating system (OS) command injection that could allow an authenticated user to execute
Pingback: CVE-2026-25108 FileZen Now on CISA’s KEV List: Patch It or Get Owned – Lars Hilse – Cyber Incident Response // Cyber Security // Cybercrime // Cyber Terrorism // Cyber Defense