Keep updated with KEVIntel progress and pro features

Known Exploited Vulnerabilities Intel

This table displays known exploited vulnerabilities (KEVs) that have been cataloged from over 50 public sources, including CISA, and (once we get some hits) our own private sensors. Each entry links to a CVE identifier, where the CVE details are enriched with EPSS scores, online mentions, scanner inclusion, exploitation, and other metadata. The goal is to be an early warning system, even before being published by CISA. More data and features coming soon!

CVE ID	Title	Vendor	Product	Added	Source
CVE-2016-0099	The Secondary Logon Service in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2015-7645	Adobe Flash Player 18.x through 18.0.0.252 and 19.x through 19.0.0.207 on Windows and OS X and 11.x through 11.2.202.535 on Linux allows remote...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2015-5119	Use-after-free vulnerability in the ByteArray class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.296 and...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2015-4902	Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60 allows remote attackers to affect integrity via unknown vectors related to...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2015-3043	Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2015-2590	Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2015-2545	Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2013 RT SP1 allows remote attackers to execute arbitrary code via a crafted EPS image, aka...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2015-2424	Microsoft PowerPoint 2007 SP3, Word 2007 SP3, PowerPoint 2010 SP2, Word 2010 SP2, PowerPoint 2013 SP1, Word 2013 SP1, and PowerPoint 2013 RT SP1...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2015-2387	ATMFD.DLL in the Adobe Type Manager Font Driver in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1,...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2015-1701	Win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Vista SP2, and Server 2008 SP2 allows local users to gain privileges...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2015-1642	Microsoft Office 2007 SP3, 2010 SP2, and 2013 SP1 allows remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2014-4114	Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2014-0496	Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.9 and 11.x before 11.0.06 on Windows and Mac OS X allows attackers to...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2013-5065	NDProxy.sys in the kernel in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges via a crafted application,...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2013-3897	Use-after-free vulnerability in the CDisplayPointer class in mshtml.dll in Microsoft Internet Explorer 6 through 11 allows remote attackers to...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2013-3346	Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code or cause a denial...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2013-1675	Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 do not properly...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2013-1347	Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2013-0641	Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 allows remote attackers to execute...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2013-0640	Adobe Reader and Acrobat 9.x before 9.5.4, 10.x before 10.1.6, and 11.x before 11.0.02 allow remote attackers to execute arbitrary code or cause a...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2013-0632	administrator.cfc in Adobe ColdFusion 9.0, 9.0.1, 9.0.2, and 10 allows remote attackers to bypass authentication and possibly execute arbitrary...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2012-4681	Multiple vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allow remote attackers to execute...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2012-1856	The TabStrip ActiveX control in the Common Controls in MSCOMCTL.OCX in Microsoft Office 2003 SP3, Office 2003 Web Components SP3, Office 2007 SP2...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2012-1723	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA
CVE-2012-1535	Unspecified vulnerability in Adobe Flash Player before 11.3.300.271 on Windows and Mac OS X and before 11.2.202.238 on Linux allows remote...	n/a	n/a	2022-03-03 00:00:00 UTC	CISA

Displaying vulnerabilities 976 - 1000 of 1403 in total