Known Exploited Vulnerabilities

Focus on What Matters

There are 298,163 vulnerabilities in the CVE database.
Whilst only 0.6% are ever actively exploited.

This list contains the vulnerabilities that are actively exploited by malware and threat actors that you should prioritize first.

This table displays known exploited vulnerabilities (KEVs) that have been cataloged from over 60 public sources, including CISA, and our own private sensors. Each entry links to a CVE identifier, where the CVE details are enriched with EPSS scores, online mentions, scanner inclusion, exploitation, tags, and other metadata. The goal is to be an early warning system, even before being published by CISA. More data and features coming soon!

CVE ID	Title	Vendor	Product	Added	Source
CVE-2022-28810	Zoho ManageEngine ADSelfService Plus before build 6122 allows a remote authenticated administrator to execute arbitrary operating OS commands as...	n/a	n/a	2023-03-07 00:00:00 UTC	CISA
CVE-2022-36537	ZK Framework v9.6.1, 9.6.0.1, 9.5.1.3, 9.0.1.2 and 8.6.4.1 allows attackers to access sensitive information via a crafted POST request sent to the...	n/a	n/a	2023-02-27 00:00:00 UTC	CISA
CVE-2022-47986	IBM Aspera Faspex code execution	IBM	Aspera Faspex	2023-02-21 00:00:00 UTC	CISA
CVE-2022-40765	A vulnerability in the Edge Gateway component of Mitel MiVoice Connect through 19.3 (22.22.6100.0) could allow an authenticated attacker with...	n/a	n/a	2023-02-21 00:00:00 UTC	CISA
CVE-2022-41223	The Director database component of MiVoice Connect through 19.3 (22.22.6100.0) could allow an authenticated attacker to conduct a code-injection...	n/a	n/a	2023-02-21 00:00:00 UTC	CISA
CVE-2022-46169	Unauthenticated Command Injection	Cacti	cacti	2023-02-16 00:00:00 UTC	CISA
CVE-2023-21715	Microsoft Publisher Security Feature Bypass Vulnerability	Microsoft	Microsoft 365 Apps for Enterprise	2023-02-14 00:00:00 UTC	CISA
CVE-2023-21823	Windows Graphics Component Remote Code Execution Vulnerability	Microsoft	Microsoft Office for Android, Microsoft Office for Universal, Microsoft Office for iOS, Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows 10 Version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 Service Pack 2 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 R2 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Server Core installation), Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation)	2023-02-14 00:00:00 UTC	CISA
CVE-2023-23529	A type confusion issue was addressed with improved checks. This issue is fixed in iOS 15.7.4 and iPadOS 15.7.4, iOS 16.3.1 and iPadOS 16.3.1, macOS...	Apple	iOS and iPadOS, Safari, macOS	2023-02-14 00:00:00 UTC	CISA
CVE-2023-23376	Windows Common Log File System Driver Elevation of Privilege Vulnerability	Microsoft	Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows 10 Version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 Service Pack 2 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 R2 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Server Core installation), Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation)	2023-02-14 00:00:00 UTC	CISA
CVE-2015-2291	(1) IQVW32.sys before 1.3.1.0 and (2) IQVW64.sys before 1.3.1.0 in the Intel Ethernet diagnostics driver for Windows allows local users to cause a...	Intel	Ethernet diagnostics driver for Windows	2023-02-10 00:00:00 UTC	CISA
CVE-2023-0669	Fortra GoAnywhere MFT License Response Servlet Command Injection	Fortra	Goanywhere MFT	2023-02-10 00:00:00 UTC	CISA
CVE-2022-24990	TerraMaster NAS 4.2.29 and earlier allows remote attackers to discover the administrative password by sending "User-Agent: TNAS" to...	n/a	n/a	2023-02-10 00:00:00 UTC	CISA
CVE-2023-22952	In SugarCRM before 12.0. Hotfix 91155, a crafted request can inject custom PHP code through the EmailTemplates because of missing input validation.	n/a	n/a	2023-02-02 00:00:00 UTC	CISA
CVE-2022-21587	Vulnerability in the Oracle Web Applications Desktop Integrator product of Oracle E-Business Suite (component: Upload). Supported versions that are...	Oracle Corporation	Web Applications Desktop Integrator	2023-02-02 00:00:00 UTC	CISA
CVE-2017-11357	Progress Telerik UI for ASP.NET AJAX before R2 2017 SP2 does not properly restrict user input to RadAsyncUpload, which allows remote attackers to...	Progress	Telerik UI for ASP.NET AJAX	2023-01-26 00:00:00 UTC	CISA
CVE-2022-47966	Multiple Zoho ManageEngine on-premise products, such as ServiceDesk Plus through 14003, allow remote code execution due to use of Apache Santuario...	n/a	n/a	2023-01-23 00:00:00 UTC	CISA
CVE-2023-24059	Grand Theft Auto V for PC allows attackers to achieve partial remote code execution or modify files on a PC, as exploited in the wild in January 2023.	n/a	n/a	2023-01-22 00:00:00 UTC	CVE
CVE-2022-44877	login/index.php in CWP (aka Control Web Panel or CentOS Web Panel) 7 before 0.9.8.1147 allows remote attackers to execute arbitrary OS commands via...	n/a	n/a	2023-01-17 00:00:00 UTC	CISA
CVE-2023-21674	Windows Advanced Local Procedure Call (ALPC) Elevation of Privilege Vulnerability	Microsoft	Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows 10 Version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows 8.1, Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation)	2023-01-10 00:00:00 UTC	CISA
CVE-2022-41080	Microsoft Exchange Server Elevation of Privilege Vulnerability	Microsoft	Microsoft Exchange Server 2016 Cumulative Update 23, Microsoft Exchange Server 2019 Cumulative Update 12, Microsoft Exchange Server 2013 Cumulative Update 23, Microsoft Exchange Server 2019 Cumulative Update 11, Microsoft Exchange Server 2016 Cumulative Update 22	2023-01-10 00:00:00 UTC	CISA
CVE-2018-5430	TIBCO JasperReports Server Information Disclosure Vulnerability	TIBCO Software Inc.	TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO Jaspersoft for AWS with Multi-Tenancy, TIBCO Jaspersoft Reporting and Analytics for AWS	2022-12-29 00:00:00 UTC	CISA
CVE-2018-18809	TIBCO JasperReports Library Directory Traversal Vulnerability	TIBCO Software Inc.	TIBCO JasperReports Library, TIBCO JasperReports Library Community Edition, TIBCO JasperReports Library for ActiveMatrix BPM, TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO Jaspersoft for AWS with Multi-Tenancy, TIBCO Jaspersoft Reporting and Analytics for AWS	2022-12-29 00:00:00 UTC	CISA
CVE-2022-45359	WordPress YITH WooCommerce Gift Cards Premium Plugin <= 3.19.0 is vulnerable to Arbitrary File Upload	YITH	YITH WooCommerce Gift Cards	2022-12-22 09:23:55 UTC	Wordfence
CVE-2022-34478	The ms-msdt, search, and search-ms protocols deliver content to Microsoft applications, bypassing the browser, when a user accepts a prompt. These...	Mozilla	Firefox, Firefox ESR, Thunderbird	2022-12-22 00:00:00 UTC	CVE

Displaying vulnerabilities 801 - 825 of 1857 in total