The Biden administration issued a new order — Binding Operational Directive 22-01 - Reducing the Significant Risk of Known Exploited Vulnerabilities — requiring nearly all federal agencies to patch hundreds of cybersecurity flaws considered significant vulnerabilities for damaging intrusions into government computer systems.