The newly added vulnerabilities in the KEV Catalog affect a code execution vulnerability in IBM Aspera Faspex, and a code execution and command injection vulnerability in Mitel MiVoice Connect.