CISA put CVE-2025-7775 on its KEV list with a two‑day federal fix deadline, intensifying pressure to patch, then run incident response for potential webshells.
