CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV

SITREP: The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two vulnerabilities, CVE-2025-34291 and another related to Trend Micro Apex One, to its Known Exploited Vulnerabilities (KEV) catalog due to evidence of active exploitation. The Langflow vulnerability has a CVSS score of 9.4, indicating a critical security risk. TACTICAL ASSESSMENT: The inclusion of these vulnerabilities in the KEV catalog highlights the increasing threat landscape and the urgency for organizations to address these security flaws. This move may prompt heightened cybersecurity measures across sectors reliant on these technologies. PROJECTED VECTORS: It is likely that organizations will accelerate patching efforts and enhance monitoring for potential exploitation attempts in the coming days.