Known Exploited Vulnerabilities

Focus on What Matters

There are 297,782 vulnerabilities in the CVE database.
Whilst only 0.6% are ever actively exploited.

This list contains the vulnerabilities that are actively exploited by malware and threat actors that you should prioritize first.

This table displays known exploited vulnerabilities (KEVs) that have been cataloged from over 60 public sources, including CISA, and our own private sensors. Each entry links to a CVE identifier, where the CVE details are enriched with EPSS scores, online mentions, scanner inclusion, exploitation, tags, and other metadata. The goal is to be an early warning system, even before being published by CISA. More data and features coming soon!

CVE ID	Title	Vendor	Product	Added	Source
CVE-2023-1389	TP-Link Archer AX21 (AX1800) firmware versions before 1.1.4 Build 20230219 contained a command injection vulnerability in the country form of the...	n/a	TP-Link Archer AX21 (AX1800)	2023-05-01 00:00:00 UTC	CISA
CVE-2021-45046	Apache Log4j2 Thread Context Message Pattern and Context Lookup Pattern vulnerable to a denial of service attack	Apache Software Foundation	Apache Log4j	2023-05-01 00:00:00 UTC	CISA
CVE-2023-21839	Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are...	Oracle Corporation	WebLogic Server	2023-05-01 00:00:00 UTC	CISA
CVE-2023-30853	Gradle Build Action data written to GitHub Actions Cache may expose secrets	gradle	gradle-build-action	2023-04-28 15:10:18 UTC	CVE
CVE-2023-31290	Trust Wallet Core before 3.1.1, as used in the Trust Wallet browser extension before 0.0.183, allows theft of funds because the entropy is 32 bits,...	n/a	n/a	2023-04-27 00:00:00 UTC	CVE
CVE-2023-2136	Integer overflow in Skia in Google Chrome prior to 112.0.5615.137 allowed a remote attacker who had compromised the renderer process to potentially...	Google	Chrome	2023-04-21 00:00:00 UTC	CISA
CVE-2023-27350	This vulnerability allows remote attackers to bypass authentication on affected installations of PaperCut NG 22.0.5 (Build 63914). Authentication...	PaperCut	NG	2023-04-21 00:00:00 UTC	CISA
CVE-2023-28432	Minio Information Disclosure in Cluster Deployment	minio	minio	2023-04-21 00:00:00 UTC	CISA
CVE-2017-6742	The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and IOS XE 2.2 through 3.17 contains...	Cisco	Cisco IOS and IOS XE	2023-04-19 00:00:00 UTC	CISA
CVE-2019-8526	A use after free issue was addressed with improved memory management. This issue is fixed in macOS Mojave 10.14.4. An application may be able to...	Apple	macOS	2023-04-17 00:00:00 UTC	CISA
CVE-2023-2033	Type confusion in V8 in Google Chrome prior to 112.0.5615.121 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML...	Google	Chrome	2023-04-17 00:00:00 UTC	CISA
CVE-2023-20963	In WorkSource, there is a possible parcel mismatch. This could lead to local escalation of privilege with no additional execution privileges...	n/a	Android	2023-04-13 00:00:00 UTC	CISA
CVE-2023-29492	Novi Survey before 8.9.43676 allows remote attackers to execute arbitrary code on the server in the context of the service account. This does not...	n/a	n/a	2023-04-13 00:00:00 UTC	CISA
CVE-2023-28252	Windows Common Log File System Driver Elevation of Privilege Vulnerability	Microsoft	Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows 10 Version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 Service Pack 2 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 R2 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Server Core installation), Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation)	2023-04-11 00:00:00 UTC	CISA
CVE-2023-28206	An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6.5, iOS 16.4.1 and iPadOS...	Apple	iOS and iPadOS, macOS	2023-04-10 00:00:00 UTC	CISA
CVE-2023-28205	A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS...	Apple	iOS and iPadOS, Safari, macOS	2023-04-10 00:00:00 UTC	CISA
CVE-2021-27876	An issue was discovered in Veritas Backup Exec before 21.2. The communication between a client and an Agent requires successful authentication,...	n/a	n/a	2023-04-07 00:00:00 UTC	CISA
CVE-2021-27877	An issue was discovered in Veritas Backup Exec before 21.2. It supports multiple authentication schemes: SHA authentication is one of these. This...	n/a	n/a	2023-04-07 00:00:00 UTC	CISA
CVE-2023-26083	Memory leak vulnerability in Mali GPU Kernel Driver in Midgard GPU Kernel Driver all versions from r6p0 - r32p0, Bifrost GPU Kernel Driver all...	n/a	n/a	2023-04-07 00:00:00 UTC	CISA
CVE-2019-1388	An elevation of privilege vulnerability exists in the Windows Certificate Dialog when it does not properly enforce user privileges, aka 'Windows...	Microsoft	Windows, Windows Server, Windows 10 Version 1903 for 32-bit Systems, Windows 10 Version 1903 for x64-based Systems, Windows 10 Version 1903 for ARM64-based Systems, Windows Server, version 1903 (Server Core installation)	2023-04-07 00:00:00 UTC	CISA
CVE-2021-27878	An issue was discovered in Veritas Backup Exec before 21.2. The communication between a client and an Agent requires successful authentication,...	n/a	n/a	2023-04-07 00:00:00 UTC	CISA
CVE-2023-29389	Toyota RAV4 2021 vehicles automatically trust messages from other ECUs on a CAN bus, which allows physically proximate attackers to drive a vehicle...	n/a	n/a	2023-04-05 00:00:00 UTC	CVE
CVE-2022-27926	A reflected cross-site scripting (XSS) vulnerability in the /public/launchNewWindow.jsp component of Zimbra Collaboration (aka ZCS) 9.0 allows...	n/a	n/a	2023-04-03 00:00:00 UTC	CISA
CVE-2023-29218	The Twitter Recommendation Algorithm through ec83d01 allows attackers to cause a denial of service (reduction of reputation score) by arranging for...	n/a	n/a	2023-04-03 00:00:00 UTC	CVE
CVE-2022-42948	Cobalt Strike 4.7.1 fails to properly escape HTML tags when they are displayed on Swing components. By injecting crafted HTML code, it is possible...	n/a	n/a	2023-03-30 00:00:00 UTC	CISA

Displaying vulnerabilities 751 - 775 of 1853 in total