KEVIntel

Known Exploited Vulnerabilities

Focus on What Matters

There are 302,856 vulnerabilities in the CVE database. Whilst only 0.7% are ever actively exploited.

This list contains the vulnerabilities that are actively exploited by malware and threat actors that you should prioritize first.

0.7% Exploited

This table displays known exploited vulnerabilities (KEVs) that have been cataloged from over 60 public sources, including CISA, and our own private sensors. Each entry links to a CVE identifier, where the CVE details are enriched with EPSS scores, online mentions, scanner inclusion, exploitation, tags, and other metadata. The goal is to be an early warning system, even before being published by CISA. More data and features coming soon!

CVE ID Vendor Source
CVE-2023-35844 Lightdash The Shadowserver (via CIRCL)
CVE-2019-18393 Ignite Realtime The Shadowserver (via CIRCL)
CVE-2021-21087 Adobe The Shadowserver (via CIRCL)
CVE-2025-20337 Cisco CVE
CVE-2025-20281 Cisco CVE
CVE-2023-2533 PaperCut CVE
CVE-2020-26073 Cisco The Shadowserver (via CIRCL)
CVE-2016-0457 Oracle The Shadowserver (via CIRCL)
CVE-2024-10586 eugenbobrowski The Shadowserver (via CIRCL)
CVE-2024-46938 Sitecore The Shadowserver (via CIRCL)
CVE-2020-27986 SonarSource The Shadowserver (via CIRCL)
CVE-2022-23347 BigAnt Software The Shadowserver (via CIRCL)
CVE-2019-18371 Xiaomi The Shadowserver (via CIRCL)
CVE-2025-40598 SonicWall SonicWall Security Advisories
CVE-2025-40597 SonicWall SonicWall Security Advisories
CVE-2025-40596 SonicWall SonicWall Security Advisories
CVE-2022-22242 Juniper Networks The Shadowserver (via CIRCL)
CVE-2023-45878 GibbonEdu The Shadowserver (via CIRCL)
CVE-2022-29014 Razer The Shadowserver (via CIRCL)
CVE-2024-7097 WSO2 The Shadowserver (via CIRCL)
CVE-2022-21500 Oracle Corporation The Shadowserver (via CIRCL)
CVE-2025-49704 Microsoft TheHackerNews
CVE-2025-53771 Microsoft BleepingComputer
CVE-2025-49706 Microsoft TheHackerNews
CVE-2025-53770 Microsoft TheHackerNews
Displaying vulnerabilities 1 - 25 of 1979 in total