CISA has updated its KEV database (twice) with four vulnerabilities that are currently exploited in the wild. This includes two 2024 Citrix bugs, a Git vulnerability from last month, and a recent iOS zero-day from last week

https://www.cisa.gov/news-events/alerts/2025/08/25/cisa-adds-three-known-exploited-vulnerabilities-catalog

https://www.cisa.gov/news-events/alerts/2025/08/21/cisa-adds-one-known-exploited-vulnerability-catalog