Known Exploited Vulnerabilities

Focus on What Matters

There are 298,167 vulnerabilities in the CVE database.
Whilst only 0.6% are ever actively exploited.

This list contains the vulnerabilities that are actively exploited by malware and threat actors that you should prioritize first.

This table displays known exploited vulnerabilities (KEVs) that have been cataloged from over 60 public sources, including CISA, and our own private sensors. Each entry links to a CVE identifier, where the CVE details are enriched with EPSS scores, online mentions, scanner inclusion, exploitation, tags, and other metadata. The goal is to be an early warning system, even before being published by CISA. More data and features coming soon!

CVE ID	Title	Vendor	Product	Added	Source
CVE-2022-42856	A type confusion issue was addressed with improved state handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2...	Apple	tvOS	2022-12-14 00:00:00 UTC	CISA
CVE-2022-27518	Unauthenticated remote arbitrary code execution	Citrix	Citrix Gateway, Citrix ADC	2022-12-13 00:00:00 UTC	CISA
CVE-2022-44698	Windows SmartScreen Security Feature Bypass Vulnerability	Microsoft	Windows 10 Version 1809, Windows Server 2019, Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 10 Version 22H2, Windows 10 Version 1607, Windows Server 2016	2022-12-13 00:00:00 UTC	CISA
CVE-2022-42475	A heap-based buffer overflow vulnerability [CWE-122] in FortiOS SSL-VPN 7.2.0 through 7.2.2, 7.0.0 through 7.0.8, 6.4.0 through 6.4.10, 6.2.0...	Fortinet	FortiProxy, FortiOS	2022-12-13 00:00:00 UTC	CISA
CVE-2022-26501	Veeam Backup & Replication 10.x and 11.x has Incorrect Access Control (issue 1 of 2).	n/a	n/a	2022-12-13 00:00:00 UTC	CISA
CVE-2022-26500	Improper limitation of path names in Veeam Backup & Replication 9.5U3, 9.5U4,10.x, and 11.x allows remote authenticated users access to internal...	n/a	n/a	2022-12-13 00:00:00 UTC	CISA
CVE-2022-4262	Type confusion in V8 in Google Chrome prior to 108.0.5359.94 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML...	Google	Chrome	2022-12-05 00:00:00 UTC	CISA
CVE-2022-45045	Multiple Xiongmai NVR devices, including MBD6304T V4.02.R11.00000117.10001.131900.00000 and NBD6808T-PL V4.02.R11.C7431119.12001.130000.00000,...	n/a	n/a	2022-12-01 00:00:00 UTC	CVE
CVE-2022-4135	Heap buffer overflow in GPU in Google Chrome prior to 107.0.5304.121 allowed a remote attacker who had compromised the renderer process to...	Google	Chrome	2022-11-28 00:00:00 UTC	CISA
CVE-2021-35587	Vulnerability in the Oracle Access Manager product of Oracle Fusion Middleware (component: OpenSSO Agent). Supported versions that are affected are...	Oracle Corporation	Access Manager	2022-11-28 00:00:00 UTC	CISA
CVE-2022-41049	Windows Mark of the Web Security Feature Bypass Vulnerability	Microsoft	Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows 11 version 22H2, Windows 10 Version 22H2	2022-11-14 00:00:00 UTC	CISA
CVE-2022-41073	Windows Print Spooler Elevation of Privilege Vulnerability	Microsoft	Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows 7, Windows 7 Service Pack 1, Windows 8.1, Windows Server 2008 Service Pack 2, Windows Server 2008 Service Pack 2 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 R2 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Server Core installation), Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation)	2022-11-08 00:00:00 UTC	CISA
CVE-2022-41091	Windows Mark of the Web Security Feature Bypass Vulnerability	Microsoft	Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows 11 version 22H2, Windows 10 Version 22H2	2022-11-08 00:00:00 UTC	CISA
CVE-2022-41125	Windows CNG Key Isolation Service Elevation of Privilege Vulnerability	Microsoft	Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows 8.1, Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation)	2022-11-08 00:00:00 UTC	CISA
CVE-2021-25370	An incorrect implementation handling file descriptor in dpu driver prior to SMR Mar-2021 Release 1 results in memory corruption leading to kernel...	Samsung Mobile	Samsung Mobile Devices	2022-11-08 00:00:00 UTC	CISA
CVE-2021-25369	An improper access control vulnerability in sec_log file prior to SMR MAR-2021 Release 1 exposes sensitive kernel information to userspace.	Samsung Mobile	Samsung Mobile Devices	2022-11-08 00:00:00 UTC	CISA
CVE-2021-25337	Improper access control in clipboard service in Samsung mobile devices prior to SMR Mar-2021 Release 1 allows untrusted applications to read or...	Samsung Mobile	Samsung Mobile Devices	2022-11-08 00:00:00 UTC	CISA
CVE-2022-41128	Windows Scripting Languages Remote Code Execution Vulnerability	Microsoft	Windows 10 Version 1809, Windows Server 2019, Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows 7, Windows 7 Service Pack 1, Windows 8.1, Windows Server 2008 R2 Service Pack 1, Windows Server 2012, Windows Server 2012 R2	2022-11-08 00:00:00 UTC	CISA
CVE-2022-3723	Type confusion in V8 in Google Chrome prior to 107.0.5304.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML...	Google	Chrome	2022-10-28 00:00:00 UTC	CISA
CVE-2022-42827	An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.7.1 and iPadOS 15.7.1, iOS 16.1 and iPadOS...	Apple	iOS and iPadOS	2022-10-25 00:00:00 UTC	CISA
CVE-2020-3153	Cisco AnyConnect Secure Mobility Client for Windows Uncontrolled Search Path Vulnerability	Cisco	Cisco AnyConnect Secure Mobility Client	2022-10-24 00:00:00 UTC	CISA
CVE-2020-3433	Cisco AnyConnect Secure Mobility Client for Windows DLL Hijacking Vulnerability	Cisco	Cisco AnyConnect Secure Mobility Client	2022-10-24 00:00:00 UTC	CISA
CVE-2018-19323	The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC...	GIGABYTE	APP Center, AORUS GRAPHICS ENGINE, XTREME GAMING ENGINE, OC GURU II	2022-10-24 00:00:00 UTC	CISA
CVE-2018-19320	The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC...	GIGABYTE	APP Center, AORUS GRAPHICS ENGINE, XTREME GAMING ENGINE, OC GURU II	2022-10-24 00:00:00 UTC	CISA
CVE-2018-19321	The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before...	GIGABYTE	APP Center, AORUS GRAPHICS ENGINE, XTREME GAMING ENGINE, OC GURU II	2022-10-24 00:00:00 UTC	CISA

Displaying vulnerabilities 826 - 850 of 1857 in total