### Newly Added Vulnerabilities The vulnerabilities recently added to the KEV catalog are: * **CVE-2024-1708** (CVSS score: 8.4): A path traversal vulnerability in **ConnectWise ScreenConnect**. Successful exploitation could allow attackers to execute remote code or compromise sensitive data and critical systems. A patch has been available since February 2024. * **CVE-2026-32202** (CVSS score: 4.3): A protection mechanism failure vulnerability in **Microsoft Windows Shell**. This flaw could enable unauthorized attackers to perform spoofing attacks over a network. **Microsoft** addressed this in April 2026. ### Active Exploitation of Windows Vulnerability The addition of **CVE-2026-32202** to the KEV catalog follows **Microsoft's** updated advisory acknowledging active exploitation. While the specifics of these attacks remain undisclosed by **Microsoft**, investigations by **Akamai** suggest that this vulnerability is linked to an incomplete patch for **CVE-2026-21510**. This earlier vulnerability was exploited as a zero-day, alongside **CVE-2026-21513**, by the Russian hacking group **APT28** in attacks targeting Ukraine and E.U. countries starting in December 2025. ### ConnectWise Flaw Exploitation Exploitation of **CVE-2024-1708** has been observed in conjunction with **CVE-2024-1709** (CVSS score: 10.0), a critical authentication bypass vulnerability. Multiple threat actors have chained these vulnerabilities. **Microsoft** has attributed the exploitation of these flaws to **Storm-1175**, a China-based threat actor, in attacks deploying Medusa ransomware. **CISA** added **CVE-2024-1709** to the KEV catalog on February 22, 2024. ### Remediation Deadline Federal Civilian Executive Branch (FCEB) agencies are mandated to apply the necessary patches for these vulnerabilities by May 12, 2026, to safeguard their networks. All organizations are strongly encouraged to apply these patches as soon as possible to mitigate potential risks.