Known Exploited Vulnerabilities

Focus on What Matters

There are 298,222 vulnerabilities in the CVE database.
Whilst only 0.6% are ever actively exploited.

This list contains the vulnerabilities that are actively exploited by malware and threat actors that you should prioritize first.

This table displays known exploited vulnerabilities (KEVs) that have been cataloged from over 60 public sources, including CISA, and our own private sensors. Each entry links to a CVE identifier, where the CVE details are enriched with EPSS scores, online mentions, scanner inclusion, exploitation, tags, and other metadata. The goal is to be an early warning system, even before being published by CISA. More data and features coming soon!

CVE ID	Title	Vendor	Product	Added	Source
CVE-2017-0022	Microsoft XML Core Services (MSXML) in Windows 10 Gold, 1511, and 1607; Windows 7 SP1; Windows 8.1; Windows RT 8.1; Windows Server 2008 SP2 and R2...	Microsoft	XML Core Services	2022-05-24 00:00:00 UTC	CISA
CVE-2017-0147	The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2;...	Microsoft	Windows SMB	2022-05-24 00:00:00 UTC	CISA
CVE-2018-19943	If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code. QNAP has already fixed these issues in...	QNAP Systems Inc.	QTS	2022-05-24 00:00:00 UTC	CISA
CVE-2018-19949	If exploited, this command injection vulnerability could allow remote attackers to run arbitrary commands. QNAP has already fixed the issue in the...	QNAP Systems Inc.	QTS	2022-05-24 00:00:00 UTC	CISA
CVE-2018-19953	If exploited, this cross-site scripting vulnerability could allow remote attackers to inject malicious code. QNAP has already fixed the issue in...	QNAP Systems Inc.	QTS	2022-05-24 00:00:00 UTC	CISA
CVE-2018-8611	An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory, aka "Windows Kernel Elevation of...	Microsoft	Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers	2022-05-24 00:00:00 UTC	CISA
CVE-2016-3298	Microsoft Internet Explorer 9 through 11 and the Internet Messaging API in Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1...	Microsoft	Internet Explorer	2022-05-24 00:00:00 UTC	CISA
CVE-2016-6367	Cisco Adaptive Security Appliance (ASA) Software before 8.4(1) on ASA 5500, ASA 5500-X, PIX, and FWSM devices allows local users to gain privileges...	Cisco	Adaptive Security Appliance (ASA) Software	2022-05-24 00:00:00 UTC	CISA
CVE-2016-6366	Buffer overflow in Cisco Adaptive Security Appliance (ASA) Software through 9.4.2.3 on ASA 5500, ASA 5500-X, ASA Services Module, ASA 1000V, ASAv,...	Cisco	Adaptive Security Appliance (ASA) Software	2022-05-24 00:00:00 UTC	CISA
CVE-2016-4657	WebKit in Apple iOS before 9.3.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted...	Apple	iOS	2022-05-24 00:00:00 UTC	CISA
CVE-2016-4656	The kernel in Apple iOS before 9.3.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory...	Apple	iOS	2022-05-24 00:00:00 UTC	CISA
CVE-2016-4655	The kernel in Apple iOS before 9.3.5 allows attackers to obtain sensitive information from memory via a crafted app.	Apple	iOS	2022-05-24 00:00:00 UTC	CISA
CVE-2016-3351	Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to obtain sensitive information via a crafted web site, aka...	Microsoft	Internet Explorer, Edge	2022-05-24 00:00:00 UTC	CISA
CVE-2016-0162	Microsoft Internet Explorer 9 through 11 allows remote attackers to determine the existence of files via crafted JavaScript code, aka "Internet...	Microsoft	Internet Explorer	2022-05-24 00:00:00 UTC	CISA
CVE-2019-13720	Use after free in WebAudio in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to potentially exploit heap corruption via a crafted...	Google	Chrome	2022-05-23 00:00:00 UTC	CISA
CVE-2019-0703	An information disclosure vulnerability exists in the way that the Windows SMB Server handles certain requests, aka 'Windows SMB Information...	Microsoft	Windows, Windows Server	2022-05-23 00:00:00 UTC	CISA
CVE-2019-5786	Object lifetime issue in Blink in Google Chrome prior to 72.0.3626.121 allowed a remote attacker to potentially perform out of bounds memory access...	Google	Chrome	2022-05-23 00:00:00 UTC	CISA
CVE-2019-0676	An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory.An attacker who successfully exploited...	Microsoft	Internet Explorer 11, Internet Explorer 10	2022-05-23 00:00:00 UTC	CISA
CVE-2019-7287	A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.4. An application may be able to execute...	Apple	iOS	2022-05-23 00:00:00 UTC	CISA
CVE-2019-7286	A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.4, macOS Mojave 10.14.3 Supplemental...	Apple	iOS, macOS	2022-05-23 00:00:00 UTC	CISA
CVE-2020-0638	An elevation of privilege vulnerability exists in the way the Update Notification Manager handles files.To exploit this vulnerability, an attacker...	Microsoft	Windows, Windows 10 Version 1903 for ARM64-based Systems, Windows 10 Version 1903 for 32-bit Systems, Windows 10 Version 1903 for x64-based Systems, Windows Server, Windows Server, version 1903 (Server Core installation), Windows 10 Version 1909 for 32-bit Systems, Windows 10 Version 1909 for x64-based Systems, Windows Server, version 1909 (Server Core installation), Windows 10 Version 1909 for ARM64-based Systems	2022-05-23 00:00:00 UTC	CISA
CVE-2020-1027	An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of...	Microsoft	Windows, Windows Server, Windows 10 Version 1909 for 32-bit Systems, Windows 10 Version 1909 for x64-based Systems, Windows 10 Version 1909 for ARM64-based Systems, Windows Server, version 1909 (Server Core installation), Windows 10 Version 1903 for 32-bit Systems, Windows 10 Version 1903 for x64-based Systems, Windows 10 Version 1903 for ARM64-based Systems, Windows Server, version 1903 (Server Core installation)	2022-05-23 00:00:00 UTC	CISA
CVE-2021-30883	A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 15.0.2 and iPadOS 15.0.2, macOS Monterey 12.0.1,...	Apple	iOS and iPadOS, macOS	2022-05-23 00:00:00 UTC	CISA
CVE-2021-0920	In unix_scm_to_skb of af_unix.c, there is a possible use after free bug due to a race condition. This could lead to local escalation of privilege...	n/a	Android	2022-05-23 00:00:00 UTC	CISA
CVE-2021-1048	In ep_loop_check_proc of eventpoll.c, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of...	n/a	Android	2022-05-23 00:00:00 UTC	CISA

Displaying vulnerabilities 1001 - 1025 of 1856 in total