Keep updated with KEVIntel progress and pro features

Known Exploited Vulnerabilities Intel

This table displays known exploited vulnerabilities (KEVs) that have been cataloged from over 50 public sources, including CISA, and (once we get some hits) our own private sensors. Each entry links to a CVE identifier, where the CVE details are enriched with EPSS scores, online mentions, scanner inclusion, exploitation, and other metadata. The goal is to be an early warning system, even before being published by CISA. More data and features coming soon!

CVE ID	Title	Vendor	Product	Added	Source
CVE-2016-4171	Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier allows remote attackers to execute arbitrary code via unknown vectors, as...	n/a	n/a	2022-03-25 00:00:00 UTC	CISA
CVE-2016-1555	(1) boardData102.php, (2) boardData103.php, (3) boardDataJP.php, (4) boardDataNA.php, and (5) boardDataWW.php in Netgear WN604 before 3.3.3 and...	n/a	n/a	2022-03-25 00:00:00 UTC	CISA
CVE-2016-11021	setSystemCommand on D-Link DCS-930L devices before 2.12 allows a remote attacker to execute code via an OS command in the SystemCommand parameter.	n/a	n/a	2022-03-25 00:00:00 UTC	CISA
CVE-2016-10174	The NETGEAR WNR2000v5 router contains a buffer overflow in the hidden_lang_avi parameter when invoking the URL /apply.cgi?/lang_check.html. This...	n/a	n/a	2022-03-25 00:00:00 UTC	CISA
CVE-2016-0752	Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x...	n/a	n/a	2022-03-25 00:00:00 UTC	CISA
CVE-2019-10068	An issue was discovered in Kentico 12.0.x before 12.0.15, 11.0.x before 11.0.48, 10.0.x before 10.0.52, and 9.x versions. Due to a failure to...	n/a	n/a	2022-03-25 00:00:00 UTC	CISA
CVE-2015-4068	Directory traversal vulnerability in Arcserve UDP before 5.0 Update 4 allows remote attackers to obtain sensitive information or cause a denial of...	n/a	n/a	2022-03-25 00:00:00 UTC	CISA
CVE-2015-3035	Directory traversal vulnerability in TP-LINK Archer C5 (1.2) with firmware before 150317, C7 (2.0) with firmware before 150304, and C8 (1.0) with...	n/a	n/a	2022-03-25 00:00:00 UTC	CISA
CVE-2015-1427	The Groovy scripting engine in Elasticsearch before 1.3.8 and 1.4.x before 1.4.3 allows remote attackers to bypass the sandbox protection mechanism...	n/a	n/a	2022-03-25 00:00:00 UTC	CISA
CVE-2019-11043	Underflow in PHP-FPM can lead to RCE	PHP	PHP	2022-03-25 00:00:00 UTC	CISA
CVE-2019-12989	Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 allow SQL Injection.	n/a	n/a	2022-03-25 00:00:00 UTC	CISA
CVE-2019-12991	Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input Validation (issue 5 of 6).	n/a	n/a	2022-03-25 00:00:00 UTC	CISA
CVE-2019-15107	An issue was discovered in Webmin <=1.920. The parameter old in password_change.cgi contains a command injection vulnerability.	n/a	n/a	2022-03-25 00:00:00 UTC	CISA
CVE-2019-16920	Unauthenticated remote code execution occurs in D-Link products such as DIR-655C, DIR-866L, DIR-652, and DHP-1565. The issue occurs when the...	n/a	n/a	2022-03-25 00:00:00 UTC	CISA
CVE-2019-2616	Vulnerability in the BI Publisher (formerly XML Publisher) component of Oracle Fusion Middleware (subcomponent: BI Publisher Security). Supported...	Oracle Corporation	BI Publisher (formerly XML Publisher)	2022-03-25 00:00:00 UTC	CISA
CVE-2019-6340	Drupal core - Highly critical - Remote Code Execution	Drupal	Drupal Core	2022-03-25 00:00:00 UTC	CISA
CVE-2020-1631	Out of Cycle Security Advisory: Junos OS: Security vulnerability in J-Web and web based (HTTP/HTTPS) services	Juniper Networks	Junos OS	2022-03-25 00:00:00 UTC	CISA
CVE-2020-1956	Apache Kylin 2.3.0, and releases up to 2.6.5 and 3.0.1 has some restful apis which will concatenate os command with the user input string, a user...	Apache	Kylin	2022-03-25 00:00:00 UTC	CISA
CVE-2020-2021	PAN-OS: Authentication Bypass in SAML Authentication	Palo Alto Networks	PAN-OS	2022-03-25 00:00:00 UTC	CISA
CVE-2020-2506	improper access control vulnerability in Helpdesk	QNAP Systems Inc.	Helpdesk	2022-03-25 00:00:00 UTC	CISA
CVE-2020-25223	A remote code execution vulnerability exists in the WebAdmin of Sophos SG UTM before v9.705 MR5, v9.607 MR7, and v9.511 MR11	n/a	n/a	2022-03-25 00:00:00 UTC	CISA
CVE-2020-5410	Directory Traversal with spring-cloud-config-server	Spring by VMware	Spring Cloud Config	2022-03-25 00:00:00 UTC	CISA
CVE-2020-7247	smtp_mailaddr in smtp_session.c in OpenSMTPD 6.6, as used in OpenBSD 6.6 and other products, allows remote attackers to execute arbitrary commands...	n/a	n/a	2022-03-25 00:00:00 UTC	CISA
CVE-2020-9054	ZyXEL NAS products running firmware version 5.21 and earlier are vulnerable to pre-authentication command injection in weblogin.cgi	ZyXEL	NAS326, NAS520, NAS540, NAS542, NSA210, NSA220, NSA220+, NSA221, NSA310, NSA320, NSA320S, NSA325, NSA325v2	2022-03-25 00:00:00 UTC	CISA
CVE-2020-9377	D-Link DIR-610 devices allow Remote Command Execution via the cmd parameter to command.php. NOTE: This vulnerability only affects products that are...	n/a	n/a	2022-03-25 00:00:00 UTC	CISA

Displaying vulnerabilities 851 - 875 of 1402 in total