Update KEV: Fri Mar 20 00:19:21 UTC 2026

aboutcode-automation · aboutcode-automation · commit aa20bafef225 · 2026-03-20T00:19:21.000Z
Signed-off-by: AboutCode Automation &lt;automation@aboutcode.org&gt;
diff --git a/known_exploited_vulnerabilities.json b/known_exploited_vulnerabilities.json
@@ -1,9 +1,24 @@
 {
     "title": "CISA Catalog of Known Exploited Vulnerabilities",
-    "catalogVersion": "2026.03.18",
-    "dateReleased": "2026-03-18T19:24:20.2811Z",
-    "count": 1545,
+    "catalogVersion": "2026.03.19",
+    "dateReleased": "2026-03-19T15:13:53.6798Z",
+    "count": 1546,
     "vulnerabilities": [
+        {
+            "cveID": "CVE-2026-20131",
+            "vendorProject": "Cisco",
+            "product": "Secure Firewall Management Center (FMC)",
+            "vulnerabilityName": "Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management Deserialization of Untrusted Data Vulnerability",
+            "dateAdded": "2026-03-19",
+            "shortDescription": "Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management contain a deserialization of untrusted data vulnerability in the web-based management interface that could allow an unauthenticated, remote attacker to execute arbitrary Java code as root on an affected device.",
+            "requiredAction": "Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.",
+            "dueDate": "2026-03-22",
+            "knownRansomwareCampaignUse": "Known",
+            "notes": "https:\/\/sec.cloudapps.cisco.com\/security\/center\/content\/CiscoSecurityAdvisory\/cisco-sa-fmc-rce-NKhnULJh ; https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2026-20131",
+            "cwes": [
+                "CWE-502"
+            ]
+        },
         {
             "cveID": "CVE-2025-66376",
             "vendorProject": "Synacor",
@@ -696,7 +711,7 @@
         {
             "cveID": "CVE-2018-14634",
             "vendorProject": "Linux",
-            "product": "Kernal",
+            "product": "Kernel",
             "vulnerabilityName": "Linux Kernel Integer Overflow Vulnerability",
             "dateAdded": "2026-01-26",
             "shortDescription": "Linux Kernel contains an integer overflow vulnerability in the create_elf_tables() function which could allow an unprivileged local user with access to SUID (or otherwise privileged) binary to escalate their privileges on the system.",
