#CISA KEV

CISA Catalogs Critical Roundcube Deserialization Vulnerability Under Active Exploitation

CISA has added CVE-2025-49113 to the Known Exploited Vulnerabilities catalog, addressing a critical RCE flaw in Roundcube webmail software resulting from untrusted data deserialization.