<ul><li>The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Linux kernel and VMware ESXi and Workstation flaws to its Known Exploited Vulnerabilities catalog.</li><li>The Linux kernel vulnerability (CVE-2024-50302) was fixed by Google, while three VMware ESXi vulnerabilities (CVE-2025-22225, CVE-2025-22224, CVE-2025-22226) were disclosed and actively exploited.</li><li>The Linux kernel vulnerability (CVE-2024-50302) was likely used by Cellebrite's mobile forensic tools to unlock an Android phone.</li><li>Federal agencies are ordered to address the vulnerabilities by March 25, 2025, as per Binding Operational Directive (BOD) 22-01.</li></ul>

U.S. CISA adds Linux kernel and VMware ESXi and Workstation flaws to its Known Exploited Vulnerabilities catalog

Discover more