KEVIntel

Known Exploited Vulnerabilities

Focus on What Matters

There are 301,047 vulnerabilities in the CVE database. Whilst only 0.6% are ever actively exploited.

This list contains the vulnerabilities that are actively exploited by malware and threat actors that you should prioritize first.

0.6% Exploited

This table displays known exploited vulnerabilities (KEVs) that have been cataloged from over 60 public sources, including CISA, and our own private sensors. Each entry links to a CVE identifier, where the CVE details are enriched with EPSS scores, online mentions, scanner inclusion, exploitation, tags, and other metadata. The goal is to be an early warning system, even before being published by CISA. More data and features coming soon!

CVE ID Vendor Source
CVE-2020-15227 nette The Shadowserver (via CIRCL)
CVE-2021-33690 SAP SE The Shadowserver (via CIRCL)
CVE-2025-47812 wftpserver Huntress Blog
CVE-2020-28188 TerraMaster The Shadowserver (via CIRCL)
CVE-2023-46347 NDK Design The Shadowserver (via CIRCL)
CVE-2024-36111 1Panel-dev The Shadowserver (via CIRCL)
CVE-2023-4450 jeecgboot The Shadowserver (via CIRCL)
CVE-2023-3710 Honeywell, Honeywell The Shadowserver (via CIRCL)
CVE-2023-26802 Digital China Networks The Shadowserver (via CIRCL)
CVE-2023-35885 CloudPanel The Shadowserver (via CIRCL)
CVE-2023-4634 dglingren The Shadowserver (via CIRCL)
CVE-2023-3836 Dahua The Shadowserver (via CIRCL)
CVE-2023-31446 Cassia Networks The Shadowserver (via CIRCL)
CVE-2023-33831 FUXA The Shadowserver (via CIRCL)
CVE-2023-52028 TOTOlink The Shadowserver (via CIRCL)
CVE-2023-1698 WAGO The Shadowserver (via CIRCL)
CVE-2023-25135 vBulletin The Shadowserver (via CIRCL)
CVE-2023-34133 SonicWall The Shadowserver (via CIRCL)
CVE-2023-29919 n/a The Shadowserver (via CIRCL)
CVE-2023-23333 SolarView The Shadowserver (via CIRCL)
CVE-2023-30625 rudderlabs The Shadowserver (via CIRCL)
CVE-2022-36509 H3C The Shadowserver (via CIRCL)
CVE-2023-28343 Altenergy The Shadowserver (via CIRCL)
CVE-2023-1177 mlflow The Shadowserver (via CIRCL)
CVE-2023-22478 KubeOperator The Shadowserver (via CIRCL)
Displaying vulnerabilities 1 - 25 of 1940 in total