Known Exploited Vulnerabilities

Focus on What Matters

There are 297,773 vulnerabilities in the CVE database.
Whilst only 0.6% are ever actively exploited.

This list contains the vulnerabilities that are actively exploited by malware and threat actors that you should prioritize first.

This table displays known exploited vulnerabilities (KEVs) that have been cataloged from over 60 public sources, including CISA, and our own private sensors. Each entry links to a CVE identifier, where the CVE details are enriched with EPSS scores, online mentions, scanner inclusion, exploitation, tags, and other metadata. The goal is to be an early warning system, even before being published by CISA. More data and features coming soon!

CVE ID	Title	Vendor	Product	Added	Source
CVE-2023-47246	In SysAid On-Premise before 23.3.36, a path traversal vulnerability leads to code execution after an attacker writes a file to the Tomcat webroot,...	n/a	n/a	2023-11-13 00:00:00 UTC	CISA
CVE-2023-36851	Junos OS: SRX Series: A vulnerability in J-Web allows an unauthenticated attacker to upload and download arbitrary files	Juniper Networks	Junos OS	2023-11-13 00:00:00 UTC	CISA
CVE-2023-36847	Junos OS: EX Series: A vulnerability in J-Web allows an unauthenticated attacker to upload arbitrary files	Juniper Networks	Junos OS	2023-11-13 00:00:00 UTC	CISA
CVE-2023-36846	Junos OS: SRX Series: A vulnerability in J-Web allows an unauthenticated attacker to upload arbitrary files	Juniper Networks	Junos OS	2023-11-13 00:00:00 UTC	CISA
CVE-2023-36845	Junos OS: EX and SRX Series: A PHP vulnerability in J-Web allows an unauthenticated to control an important environment variable	Juniper Networks	Junos OS	2023-11-13 00:00:00 UTC	CISA
CVE-2023-36844	Junos OS: EX Series: A PHP vulnerability in J-Web allows an unauthenticated attacker to control important environment variables	Juniper Networks	Junos OS	2023-11-13 00:00:00 UTC	CISA
CVE-2023-29552	The Service Location Protocol (SLP, RFC 2608) allows an unauthenticated, remote attacker to register arbitrary services. This could allow the...	n/a	n/a	2023-11-08 00:00:00 UTC	CISA
CVE-2023-22518	All versions of Confluence Data Center and Server are affected by this unexploited vulnerability. This Improper Authorization vulnerability allows...	Atlassian	Confluence Data Center, Confluence Server	2023-11-07 00:00:00 UTC	CISA
CVE-2023-46604	Apache ActiveMQ, Apache ActiveMQ Legacy OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack	Apache Software Foundation	Apache ActiveMQ, Apache ActiveMQ Legacy OpenWire Module	2023-11-02 00:00:00 UTC	CISA
CVE-2023-46747	BIG-IP Configuration utility unauthenticated remote code execution vulnerability	F5	BIG-IP	2023-10-31 00:00:00 UTC	CISA
CVE-2023-46748	BIG-IP Configuration utility authenticated SQL injection vulnerability	F5	BIG-IP	2023-10-31 00:00:00 UTC	CISA
CVE-2023-31418	Elasticsearch uncontrolled resource consumption	Elastic	Elasticsearch	2023-10-26 17:36:42 UTC	CVE
CVE-2023-5631	Stored XSS vulnerability in Roundcube	Roundcube	Roundcubemail	2023-10-26 00:00:00 UTC	CISA
CVE-2023-20273	A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote attacker to inject commands with the privileges...	Cisco	Cisco IOS XE Software	2023-10-23 00:00:00 UTC	CISA
CVE-2023-4966	Unauthenticated sensitive information disclosure	Citrix	NetScaler ADC, NetScaler Gateway	2023-10-18 00:00:00 UTC	CISA
CVE-2023-20198	Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI feature in Cisco IOS XE Software. We are...	Cisco	Cisco IOS XE Software	2023-10-16 00:00:00 UTC	CISA
CVE-2023-5360	Royal Elementor Addons and Templates < 1.3.79 - Unauthenticated Arbitrary File Upload	Unknown	Royal Elementor Addons and Templates	2023-10-13 14:44:23 UTC	Wordfence
CVE-2023-30801	qBittorrent Web UI Default Credentials Lead to RCE	qBittorrent	qBittorrent client	2023-10-10 13:46:46 UTC	CVE
CVE-2023-36563	Microsoft WordPad Information Disclosure Vulnerability	Microsoft	Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 Service Pack 2 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 R2 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Server Core installation), Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation)	2023-10-10 00:00:00 UTC	CISA
CVE-2023-41763	Skype for Business Elevation of Privilege Vulnerability	Microsoft	Skype for Business Server 2015 CU13, Skype for Business Server 2019 CU7	2023-10-10 00:00:00 UTC	CISA
CVE-2023-44487	The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as...	n/a	n/a	2023-10-10 00:00:00 UTC	CISA
CVE-2023-20109	A vulnerability in the Cisco Group Encrypted Transport VPN (GET VPN) feature of Cisco IOS Software and Cisco IOS XE Software could allow an...	Cisco	IOS, Cisco IOS XE Software	2023-10-10 00:00:00 UTC	CISA
CVE-2023-21608	Adobe Acrobat Reader DC resetForm Use-After-Free Remote Code Execution Vulnerability	Adobe	Acrobat Reader	2023-10-10 00:00:00 UTC	CISA
CVE-2023-42824	The issue was addressed with improved checks. This issue is fixed in iOS 16.7.1 and iPadOS 16.7.1. A local attacker may be able to elevate their...	Apple	iOS and iPadOS	2023-10-05 00:00:00 UTC	CISA
CVE-2023-40044	WS_FTP Server Ad Hoc Transfer Module .NET Deserialization Vulnerability	Progress Software Corporation	WS_FTP Server	2023-10-05 00:00:00 UTC	CISA

Displaying vulnerabilities 626 - 650 of 1853 in total