Skip to content

CISA Registers Magento RCE Vulnerability CVE-2026-45247 in KEV Catalog

The Bottom Line: CISA confirms active exploitation of the remote code execution vulnerability CVE-2026-45247 in Magento cache extension and calls on federal agencies to remediate.

The US Cybersecurity and Infrastructure Security Agency (CISA) has added a critical security vulnerability in the Magento extension Mirasvit Cache Warmer to its catalog of “Known Exploited Vulnerabilities” following reports of active attacks.

CISA has classified the vulnerability CVE-2026-45247 (CVSS score: 9.8) as an actively exploited flaw. It is a deserialization issue in the Mirasvit Cache Warmer extension, a widely used full-page cache tool for the Magento e-commerce platform.

The listing in the KEV catalog signals that the vulnerability is already being exploited in real-world attack scenarios. For CISOs, this means: the vulnerability is not theoretical – it is actively being exploited against production systems and should be remediated with high priority.

Operators of Magento installations using the affected Cache Warmer extension should immediately verify whether updates are available. The inclusion in the KEV catalog also requires all US federal agencies and critical infrastructure operators to close the vulnerability within defined timeframes.


Source: thehackernews.com · Published June 4, 2026
Lumi AI News — AI-assisted curation pursuant to Art. 50 EU AI Act. Paraphrase and classification by Lumi News Pipeline v1.2.9.

Share on: