【Vulnerability Alert】CISA Adds 3 Known Exploited Vulnerabilities to KEV Catalog (2026/05/04-2026/05/10)

• Subject: 【Vulnerability Alert】CISA Adds 3 Known Exploited Vulnerabilities to KEV Catalog (2026/05/04-2026/05/10)

• Description:
  • Forwarded from Taiwan Computer Emergency Response Team / Coordination Center Security Advisory TWCERTCC-200-202605-00000010
  • 【CVE-2026-0300】Palo Alto Networks PAN-OS Out-of-bounds Write Vulnerability (CVSS v3.1: 9.8)
  • 【Known Ransomware Usage: Unknown】 Palo Alto Networks PAN-OS contains an out-of-bounds write vulnerability in the User-ID Authentication Portal service. An unauthenticated attacker can execute arbitrary code with root privileges on PA-Series and VM-Series firewalls by sending specially crafted packets.
  • 【CVE-2026-6973】Ivanti Endpoint Manager Mobile (EPMM) Improper Input Validation Vulnerability (CVSS v3.1: 7.2)
  • 【Known Ransomware Usage: Unknown】 Ivanti Endpoint Manager Mobile (EPMM) contains an improper input validation vulnerability. A remote authenticated user with administrative privileges can exploit this vulnerability to achieve remote code execution.
  • 【CVE-2026-42208】BerriAI LiteLLM SQL Injection Vulnerability (CVSS v3.1: 9.8)
  • 【Known Ransomware Usage: Unknown】 BerriAI LiteLLM contains an SQL injection vulnerability. An attacker can exploit this vulnerability to read data from the proxy server's database and potentially perform tampering, leading to unauthorized access to the proxy server and the credentials it manages.
• Affected Platforms:
  • 【CVE-2026-0300】Please refer to the affected versions listed officially: https://security.paloaltonetworks.com/CVE-2026-0300
  • 【CVE-2026-6973】Please refer to the affected versions listed officially: https://hub.ivanti.com/s/article/May-2026-Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMM-Multiple-CVEs
  • 【CVE-2026-42208】Please refer to the affected versions listed officially: https://github.com/BerriAI/litellm/security/advisories/GHSA-r75f-5x8p-qvmc
• Recommended Actions:
  • 【CVE-2026-0300】 The official fix has been released; please update to the relevant versions:
  • https://security.paloaltonetworks.com/CVE-2026-0300
  • 【CVE-2026-6973】 The official fix has been released; please update to the relevant versions:
  • https://hub.ivanti.com/s/article/May-2026-Security-Advisory-Ivanti-Endpoint-Manager-Mobile-EPMM-Multiple-CVEs
  • 【CVE-2026-42208】 The official fix has been released; please update to the relevant versions:
  • https://github.com/BerriAI/litellm/security/advisories/GHSA-r75f-5x8p-qvmc

Computer and Communication Center
Network Systems Division