CISA has added CVE-2026-39987 (Marimo Remote Code Execution Vulnerability) to its Known Exploited Vulnerabilities Catalog based on evidence of active exploitation. Federal agencies are required to remediate by established deadlines under BOD 22-01, while CISA urges all organizations to prioritize remediation of KEV Catalog vulnerabilities as part of their vulnerability management practices.