CISA Updates KEV Catalog with New Actively Exploited Vulnerabilities
CISA has added the Linux kernel vulnerability CVE-2026-31431 to its Known Exploited Vulnerabilities (KEV) Catalog following reports of active exploitation.
CISA has added CVE-2026-31431, a vulnerability in the Linux kernel, to its Known Exploited Vulnerabilities (KEV) Catalog. This specific flaw involves an incorrect resource transfer between spheres, which can be leveraged by attackers to gain unauthorized access or escalate privileges on affected systems.
The addition of this vulnerability to the KEV catalog signifies that CISA has confirmed active exploitation in the wild. As per Binding Operational Directive (BOD) 22-01, federal agencies are mandated to address this vulnerability to reduce the risk of compromise within their networks.
System administrators and security teams should ensure that their Linux distributions are patched to versions that address this vulnerability. Organizations should regularly monitor the CISA KEV Catalog for updates and prioritize remediation of listed vulnerabilities. [CISA]