CISA has added new ConnectWise and Windows vulnerabilities to its Known Exploited Vulnerabilities catalog, confirming they are being actively exploited in the wild. Federal agencies are now required to patch these flaws within a specified deadline to protect their networks. The additions highlight ongoing risks to both enterprise software and the Windows operating system, as threat actors continue to target known security weaknesses.