US CISA added 13 new flaws to the Known Exploited Vulnerabilities Catalog, including Apache LogShell Log4j and Fortinet FortiOS bugs