Changeflow GovPing Data Privacy & Cybersecurity CISA Adds CVE-2025-53521 to Known Exploited Vul...
Priority review Notice Added Final

CISA Adds CVE-2025-53521 to Known Exploited Vulnerabilities Catalog

Favicon for www.cisa.gov CISA ICS-CERT Advisories
Published March 27th, 2026
Detected March 28th, 2026
Email

Summary

CISA has added CVE-2025-53521, a remote code execution vulnerability in F5 BIG-IP, to its Known Exploited Vulnerabilities (KEV) Catalog. This addition is based on evidence of active exploitation and requires Federal Civilian Executive Branch agencies to remediate the vulnerability.

View original document View source feed page

What changed

CISA has added CVE-2025-53521, a remote code execution vulnerability affecting F5 BIG-IP, to its Known Exploited Vulnerabilities (KEV) Catalog. This vulnerability has been identified as actively exploited, posing a significant risk to federal networks. The addition is made under Binding Operational Directive (BOD) 22-01, which mandates Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities.

FCEB agencies must prioritize the remediation of CVE-2025-53521 by the established due date to protect their networks. While BOD 22-01 specifically applies to FCEB agencies, CISA strongly recommends that all organizations incorporate the remediation of KEV Catalog vulnerabilities into their broader vulnerability management practices to mitigate cyberattack risks.

What to do next

  1. FCEB agencies must remediate CVE-2025-53521 by the due date specified in BOD 22-01.
  2. All organizations should prioritize the remediation of CVE-2025-53521 as part of their vulnerability management practices.

Source document (simplified)

Alert

CISA Adds One Known Exploited Vulnerability to Catalog

Release Date

March 27, 2026

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

  • CVE-2025-53521 F5 BIG-IP Remote Code Execution Vulnerability This type of vulnerability is a frequent attack vector for malicious cyber actors and poses significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the KEV Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of KEV Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

This product is provided subject to this Notification and this Privacy & Use policy.

Please share your thoughts

We recently updated our anonymous product survey; we welcome your feedback.

Related changes

Favicon for www.cisa.gov F5 BIG-IP RCE Vulnerability (CVE-2025-53521)
Urgent Mar 28, 2026 CISA ICS-CERT Advisories Data Privacy & Cybersecurity
Favicon for www.cisa.gov WAGO Industrial Managed Switches Vulnerability Disclosed
Priority review Mar 26, 2026 CISA ICS-CERT Advisories Data Privacy & Cybersecurity
Favicon for www.cisa.gov CISA Adds CVE-2026-33634 to Known Exploited Vulnerabilities Catalog
Priority review Mar 26, 2026 CISA ICS-CERT Advisories Data Privacy & Cybersecurity
Favicon for www.nist.gov Draft NIST Cyber AI Profile for Cybersecurity Guidelines
Priority review Mar 28, 2026 NIST News Data Privacy & Cybersecurity
Favicon for usdaoig.oversight.gov USDA IT Security Directives Lack Relevance and Effectiveness
Priority review Mar 28, 2026 USDA OIG Reports Agriculture & Food Safety
Favicon for usdaoig.oversight.gov USDA Web Application Security Vulnerabilities Inspection Report
Priority review Mar 28, 2026 USDA OIG Reports Agriculture & Food Safety

Source

Favicon for www.cisa.gov
CISA ICS-CERT Advisories cisa.gov/rss.xml
Data Privacy & Cybersecurity
Analysis generated by AI. Source diff and links are from the original.

Classification

Agency
CISA
Published
March 27th, 2026
Instrument
Notice
Legal weight
Non-binding
Stage
Final
Change scope
Substantive
Document ID
CISA ICS-CERT Advisories

Who this affects

Applies to
Government agencies
Industry sector
5170 Telecommunications 9211 Government & Public Administration
Activity scope
Vulnerability Management Patch Management
Threshold
Applies to Federal Civilian Executive Branch (FCEB) agencies.
Geographic scope
United States US

Taxonomy

Primary area
Cybersecurity
Operational domain
IT Security
Compliance frameworks
NIST CSF FISMA
Topics
Vulnerability Management Information Security

Browse Categories

Agriculture & Food Safety 63 AI Regulation 3 Banking & Finance 264 Consumer Protection 44 Courts & Legal 356 Data Privacy & Cybersecurity 69 Defense & National Security 52 Education 20 Energy 106 Environment 85 Government & Legislation 274 Healthcare 136 Housing 16 Immigration 9 Insurance 56 Labor & Employment 114 Legal & Courts 1 Pharma & Drug Safety 101 Securities & Markets 86 Tax 65 Tax & Revenue 1 Telecom & Technology 47 Trade & Sanctions 124 Transportation 57

Get Data Privacy & Cybersecurity alerts

Weekly digest. AI-summarized, no noise.

Free. Unsubscribe anytime.

Get alerts for this source

We'll email you when CISA ICS-CERT Advisories publishes new changes.

Optional. Personalizes your daily digest.

Free. Unsubscribe anytime.