Known Exploited Vulnerabilities

Focus on What Matters

There are 304,517 vulnerabilities in the CVE database.
Whilst only 0.7% are ever actively exploited.

This list contains the vulnerabilities that are actively exploited by malware and threat actors that you should prioritize first.

This table displays known exploited vulnerabilities (KEVs) that have been cataloged from over 60 public sources, including CISA, and our own private sensors. Each entry links to a CVE identifier, where the CVE details are enriched with EPSS scores, online mentions, scanner inclusion, exploitation, tags, and other metadata. The goal is to be an early warning system, even before being published by CISA. More data and features coming soon!

CVE ID	Title	Vendor	Product	Added	Source
CVE-2024-13161	Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote...	Ivanti	Endpoint Manager	2025-03-10 00:00:00 UTC	CISA
CVE-2025-22226	VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability due to an out-of-bounds read in HGFS. A malicious...	n/a	ESXi, VMware Workstation, VMware Fusion, VMware Cloud Foundation, VMware Telco Cloud Platform, VMware Telco Cloud Infrastructure	2025-03-04 00:00:00 UTC	CISA
CVE-2024-50302	HID: core: zero-initialize the report buffer	Linux	Linux	2025-03-04 00:00:00 UTC	CISA
CVE-2025-22224	VMware ESXi, and Workstation contain a TOCTOU (Time-of-Check Time-of-Use) vulnerability that leads to an out-of-bounds write. A malicious...	VMware	ESXi, Workstation, VMware Cloud Foundation, Telco Cloud Platform, Telco Cloud Infrastructure	2025-03-04 00:00:00 UTC	CISA
CVE-2025-22225	VMware ESXi contains an arbitrary write vulnerability. A malicious actor with privileges within the VMX process may trigger an arbitrary...	n/a	VMware ESXi, VMware Cloud Foundation, VMware Telco Cloud Platform, VMware Telco Cloud Infrastructure	2025-03-04 00:00:00 UTC	CISA
CVE-2023-20118	A vulnerability in the web-based management interface of Cisco Small Business Routers RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could...	Cisco	Cisco Small Business RV Series Router Firmware	2025-03-03 00:00:00 UTC	CISA
CVE-2022-43939	Hitachi Vantara Pentaho Business Analytics Server - Use of Non-Canonical URL Paths for Authorization Decisions	Hitachi Vantara	Pentaho Business Analytics Server	2025-03-03 00:00:00 UTC	CISA
CVE-2022-43769	Hitachi Vantara Pentaho Business Analytics Server - Failure to Sanitize Special Elements into a Different Plane (Special Element Injection)	Hitachi Vantara	Pentaho Business Analytics Server	2025-03-03 00:00:00 UTC	CISA
CVE-2018-8639	An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k...	Microsoft	Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers	2025-03-03 00:00:00 UTC	CISA
CVE-2024-4885	WhatsUp Gold GetFileWithoutZip Directory Traversal Remote Code Execution Vulnerability	Progress Software Corporation	WhatsUp Gold	2025-03-03 00:00:00 UTC	CISA
CVE-2022-49703	scsi: ibmvfc: Store vhost pointer during subcrq allocation	Linux	Linux	2025-02-26 02:24:22 UTC	CVE
CVE-2022-49353	powerpc/papr_scm: don't requests stats with '0' sized stats buffer	Linux	Linux	2025-02-26 02:11:04 UTC	CVE
CVE-2022-49201	ibmvnic: fix race between xmit and reset	Linux	Linux	2025-02-26 01:55:43 UTC	CVE
CVE-2022-49198	mptcp: Fix crash due to tcp_tsorted_anchor was initialized before release skb	Linux	Linux	2025-02-26 01:55:41 UTC	CVE
CVE-2023-34192	Cross Site Scripting vulnerability in Zimbra ZCS v.8.8.15 allows a remote authenticated attacker to execute arbitrary code via a crafted script to...	n/a	n/a	2025-02-25 00:00:00 UTC	CISA
CVE-2024-49035	Partner.Microsoft.Com Elevation of Privilege Vulnerability	Microsoft	Microsoft Partner Center	2025-02-25 00:00:00 UTC	CISA
CVE-2017-3066	Adobe ColdFusion 2016 Update 3 and earlier, ColdFusion 11 update 11 and earlier, ColdFusion 10 Update 22 and earlier have a Java deserialization...	Adobe	Adobe ColdFusion ColdFusion 2016 Update 3 and earlier, ColdFusion 11 update 11 and earlier, ColdFusion 10 Update 22 and earlier	2025-02-24 00:00:00 UTC	CISA
CVE-2024-20953	Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain (component: Export). The supported version that is affected is 9.3.6. Easily...	Oracle Corporation	Agile PLM Framework	2025-02-24 00:00:00 UTC	CISA
CVE-2025-24989	Microsoft Power Pages Elevation of Privilege Vulnerability	Microsoft	Microsoft Power Pages	2025-02-21 00:00:00 UTC	CISA
CVE-2025-0111	PAN-OS: Authenticated File Read Vulnerability in the Management Web Interface	Palo Alto Networks	Cloud NGFW, PAN-OS, Prisma Access	2025-02-20 00:00:00 UTC	CISA
CVE-2025-23209	Potential RCE with a compromised security key in craft/cms	craftcms	cms	2025-02-20 00:00:00 UTC	CISA
CVE-2024-53704	An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote attacker to bypass authentication.	SonicWall	SonicOS	2025-02-18 00:00:00 UTC	CISA
CVE-2025-0108	PAN-OS: Authentication Bypass in the Management Web Interface	Palo Alto Networks	Cloud NGFW, PAN-OS, Prisma Access	2025-02-18 00:00:00 UTC	CISA
CVE-2024-57727	SimpleHelp remote support software v5.5.7 and before is vulnerable to multiple path traversal vulnerabilities that enable unauthenticated remote...	n/a	n/a	2025-02-13 00:00:00 UTC	CISA
CVE-2024-41710	A vulnerability in the Mitel 6800 Series, 6900 Series, and 6900w Series SIP Phones, including the 6970 Conference Unit, through R6.4.0.HF1...	n/a	n/a	2025-02-12 00:00:00 UTC	CISA

Displaying vulnerabilities 501 - 525 of 2010 in total