CISA’s addition of CVE-2025-34291 in Langflow and CVE-2026-34926 in Trend Micro Apex One to the Known Exploited Vulnerabilities catalog reveals a maturing pattern of Iranian and other state-linked groups weaponizing legitimate enterprise platforms rather than relying solely on commodity malware. Langflow’s origin-validation flaw, combining permissive CORS, absent CSRF controls, and an intentional code-execution endpoint, was first detailed by Obsidian Security in December 2025; Ctrl-Alt-Intel later attributed its operational use to MuddyWater for initial access and downstream SaaS token harvesting. This marks an evolution from the group’s traditional phishing and living-off-the-land tactics toward low-code AI tooling that sits at the intersection of development and production environments. The Trend Micro Apex One directory-traversal issue, while requiring prior administrative server access, still enabled malicious agent deployment—an indication that once perimeter defenses are breached, EDR platforms themselves become force multipliers for persistence. Federal agencies must now patch by 4 June 2026, yet the broader private sector faces identical exposure without equivalent mandates. The coverage in The Hacker News correctly flags active exploitation but underplays the cascading supply-chain risk: compromised Langflow workspaces directly expose API keys across integrated cloud services, a vector that aligns with MuddyWater’s observed targeting of Middle Eastern and European networks since late 2025. Similar patterns appear in Recorded Future’s March 2026 reporting on Iranian operators repurposing collaboration and observability tools for stealthy reconnaissance.