CISA has urged urgent patching of two actively exploited zero-days: one in Gladinet CentreStack (CVE-2025-30406) allowing remote code execution via insecure cryptographic key handling, and another in Windows CLFS (CVE-2025-29824) used for local privilege escalation. Both are listed in CISA’s Known Exploited Vulnerabilities catalog, with patches available and a compliance deadline of April 29 for federal agencies.

‍