Known Exploited Vulnerabilities

Focus on What Matters

There are 297,623 vulnerabilities in the CVE database.
Whilst only 0.6% are ever actively exploited.

This list contains the vulnerabilities that are actively exploited by malware and threat actors that you should prioritize first.

This table displays known exploited vulnerabilities (KEVs) that have been cataloged from over 60 public sources, including CISA, and our own private sensors. Each entry links to a CVE identifier, where the CVE details are enriched with EPSS scores, online mentions, scanner inclusion, exploitation, tags, and other metadata. The goal is to be an early warning system, even before being published by CISA. More data and features coming soon!

CVE ID	Title	Vendor	Product	Added	Source
CVE-2024-36971	net: fix __dst_negative_advice() race	Linux	Linux	2024-08-07 00:00:00 UTC	CISA
CVE-2024-32113	Apache OFBiz: Path traversal leading to RCE	Apache Software Foundation	Apache OFBiz	2024-08-07 00:00:00 UTC	CISA
CVE-2018-0824	A remote code execution vulnerability exists in "Microsoft COM for Windows" when it fails to properly handle serialized objects, aka "Microsoft COM...	Microsoft	Windows	2024-08-05 00:00:00 UTC	CISA
CVE-2024-6220	简数采集器 (Keydatas) <= 2.5.2 - Unauthenticated Arbitrary File Upload	zhengdon	简数采集器	2024-07-31 09:34:09 UTC	Wordfence
CVE-2024-37085	VMware ESXi contains an authentication bypass vulnerability. A malicious actor with sufficient Active Directory (AD) permissions can gain full...	n/a	VMware ESXi, VMware Cloud Foundation	2024-07-30 00:00:00 UTC	CISA
CVE-2023-45249	Remote command execution due to use of default passwords. The following products are affected: Acronis Cyber Infrastructure (ACI) before build...	Acronis	Acronis Cyber Infrastructure	2024-07-29 00:00:00 UTC	CISA
CVE-2024-4879	Jelly Template Injection Vulnerability in ServiceNow UI Macros	ServiceNow	Now Platform	2024-07-29 00:00:00 UTC	CISA
CVE-2024-5217	Incomplete Input Validation in GlideExpression Script	ServiceNow	Now Platform	2024-07-29 00:00:00 UTC	CISA
CVE-2012-4792	Use-after-free vulnerability in Microsoft Internet Explorer 6 through 8 allows remote attackers to execute arbitrary code via a crafted web site...	Microsoft	Internet Explorer	2024-07-23 00:00:00 UTC	CISA
CVE-2024-39891	In the Twilio Authy API, accessed by Authy Android before 25.1.0 and Authy iOS before 26.1.0, an unauthenticated endpoint provided access to...	n/a	n/a	2024-07-23 00:00:00 UTC	CISA
CVE-2022-22948	The vCenter Server contains an information disclosure vulnerability due to improper permission of files. A malicious actor with non-administrative...	n/a	VMware vCenter Server and VMware Cloud Foundation	2024-07-17 00:00:00 UTC	CISA
CVE-2024-34102	XXE can expose crypt key and other secrets granting full admin access	Adobe	Adobe Commerce	2024-07-17 00:00:00 UTC	CISA
CVE-2024-28995	SolarWinds Serv-U L Directory Transversal Vulnerability	SolarWinds	SolarWinds Serv-U	2024-07-17 00:00:00 UTC	CISA
CVE-2022-48811	ibmvnic: don't release napi in __ibmvnic_open()	Linux	Linux	2024-07-16 11:44:01 UTC	CVE
CVE-2024-36401	Remote Code Execution (RCE) vulnerability in evaluating property name expressions in Geoserver	geoserver	geoserver	2024-07-15 00:00:00 UTC	CISA
CVE-2024-23692	Rejetto HTTP File Server 2.3m Unauthenticated RCE	Rejetto	HTTP File Server	2024-07-09 00:00:00 UTC	CISA
CVE-2024-38080	Windows Hyper-V Elevation of Privilege Vulnerability	Microsoft	Windows Server 2022, Windows 11 version 21H2, Windows 11 version 22H2, Windows 11 version 22H3, Windows 11 Version 23H2, Windows Server 2022, 23H2 Edition (Server Core installation)	2024-07-09 00:00:00 UTC	CISA
CVE-2024-38112	Windows MSHTML Platform Spoofing Vulnerability	Microsoft	Windows 10 Version 22H2, Windows 11 Version 23H2, Windows 10 Version 1507, Windows 11 version 22H2, Windows 10 Version 1607, Windows Server 2016, Windows 10 Version 21H2, Windows Server 2016 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 Service Pack 2 (Server Core installation), Windows Server 2008 Service Pack 2, Windows 10 Version 1809, Windows Server 2012 R2, Windows 11 version 22H3, Windows Server 2012 R2 (Server Core installation), Windows Server 2022, Windows Server 2022, 23H2 Edition (Server Core installation), Windows Server 2019 (Server Core installation), Windows 11 version 21H2, Windows Server 2019	2024-07-09 00:00:00 UTC	CISA
CVE-2024-20399	Cisco NX-OS Software CLI Command Injection Vulnerability	Cisco	Cisco NX-OS Software	2024-07-02 00:00:00 UTC	CISA
CVE-2022-24816	Improper Control of Generation of Code in jai-ext	geosolutions-it	jai-ext	2024-06-26 00:00:00 UTC	CISA
CVE-2022-2586	It was discovered that a nft object or expression could reference a nft set on a different nft table, leading to a use-after-free once that table...	The Linux Kernel Organization	linux	2024-06-26 00:00:00 UTC	CISA
CVE-2020-13965	An issue was discovered in Roundcube Webmail before 1.3.12 and 1.4.x before 1.4.5. There is XSS via a malicious XML attachment because text/xml is...	n/a	n/a	2024-06-26 00:00:00 UTC	CISA
CVE-2024-4358	Registration Authentication Bypass Vulnerability	Progress Software Corporation	Telerik Report Server	2024-06-13 00:00:00 UTC	CISA
CVE-2024-32896	there is a possible way to bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution...	Google	Android	2024-06-13 00:00:00 UTC	CISA
CVE-2024-26169	Windows Error Reporting Service Elevation of Privilege Vulnerability	Microsoft	Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows 11 version 22H3, Windows 11 Version 23H2, Windows Server 2022, 23H2 Edition (Server Core installation), Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation)	2024-06-13 00:00:00 UTC	CISA

Displaying vulnerabilities 501 - 525 of 1852 in total