Government ❯ Cybersecurity ❯ CISA

Incident Response

Vulnerability Management

CISA Adds Actively Exploited GeoServer XXE to KEV, Orders Federal Patching

Federal networks face a January 1, 2026 deadline under BOD 22-01.