This market resolves YES if CISA's official Known Exploited Vulnerabilities (KEV) catalog shows at least 25 entries whose `dateAdded` is from 2026-05-01 through 2026-05-31 inclusive. Use the official CISA KEV JSON/CSV feed as the primary resolver: https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json Late backfills count only if they are visible in CISA's official catalog by 2026-06-07 23:59 UTC. If CISA replaces the JSON URL with an official successor feed, use the successor official CISA KEV catalog. If CISA stops publishing the catalog entirely before resolution and there is no official successor, resolve using the last official catalog version available before 2026-06-07 23:59 UTC. Creation source check: at creation, CISA catalogVersion 2026.05.13 / released 2026-05-13T17:58:37.3518Z showed 4 entries with `dateAdded` in 2026-05. Recent month counts in the same feed: {"2025-10": 31, "2025-11": 11, "2025-12": 20, "2026-01": 17, "2026-02": 28, "2026-03": 26, "2026-04": 31, "2026-05": 4}.