Known Exploited Vulnerabilities

Focus on What Matters

There are 298,189 vulnerabilities in the CVE database.
Whilst only 0.6% are ever actively exploited.

This list contains the vulnerabilities that are actively exploited by malware and threat actors that you should prioritize first.

This table displays known exploited vulnerabilities (KEVs) that have been cataloged from over 60 public sources, including CISA, and our own private sensors. Each entry links to a CVE identifier, where the CVE details are enriched with EPSS scores, online mentions, scanner inclusion, exploitation, tags, and other metadata. The goal is to be an early warning system, even before being published by CISA. More data and features coming soon!

CVE ID	Title	Vendor	Product	Added	Source
CVE-2022-1096	Type confusion in V8 in Google Chrome prior to 99.0.4844.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	Google	Chrome	2022-03-28 00:00:00 UTC	CISA
CVE-2010-4398	Stack-based buffer overflow in the RtlQueryRegistryValues function in win32k.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2,...	Microsoft	Windows	2022-03-28 00:00:00 UTC	CISA
CVE-2021-26085	Affected versions of Atlassian Confluence Server allow remote attackers to view restricted resources via a Pre-Authorization Arbitrary File Read...	Atlassian	Confluence Server, Confluence Data Center	2022-03-28 00:00:00 UTC	CISA
CVE-2017-6316	Citrix NetScaler SD-WAN devices through v9.1.2.26.561201 allow remote attackers to execute arbitrary shell commands as root via a CGISESSID cookie....	Citrix	NetScaler SD-WAN	2022-03-25 00:00:00 UTC	CISA
CVE-2017-6334	dnslookup.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands via...	NETGEAR	DGN2200	2022-03-25 00:00:00 UTC	CISA
CVE-2018-0125	A vulnerability in the web interface of the Cisco RV132W ADSL2+ Wireless-N VPN and RV134W VDSL2 Wireless-AC VPN Routers could allow an...	Cisco	Cisco RV132W and RV134W	2022-03-25 00:00:00 UTC	CISA
CVE-2018-0147	A vulnerability in Java deserialization used by Cisco Secure Access Control System (ACS) prior to release 5.8 patch 9 could allow an...	Cisco	Cisco Secure Access Control System	2022-03-25 00:00:00 UTC	CISA
CVE-2018-11138	The '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by anonymous users and can be...	Quest	KACE System Management Appliance	2022-03-25 00:00:00 UTC	CISA
CVE-2018-1273	Spring Data Commons, versions prior to 1.13 to 1.13.10, 2.0 to 2.0.5, and older unsupported versions, contain a property binder vulnerability...	Spring by Pivotal	Spring Framework	2022-03-25 00:00:00 UTC	CISA
CVE-2018-14839	LG N1A1 NAS 3718.510 is affected by: Remote Command Execution. The impact is: execute arbitrary code (remote). The attack vector is: HTTP POST with...	LG	N1A1 NAS	2022-03-25 00:00:00 UTC	CISA
CVE-2018-6961	VMware NSX SD-WAN Edge by VeloCloud prior to version 3.1.0 contains a command injection vulnerability in the local web UI component. This component...	VMware	NSX SD-WAN by VeloCloud	2022-03-25 00:00:00 UTC	CISA
CVE-2018-8373	A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting...	Microsoft	Internet Explorer 9, Internet Explorer 11, Internet Explorer 10	2022-03-25 00:00:00 UTC	CISA
CVE-2018-8414	A remote code execution vulnerability exists when the Windows Shell does not properly validate file paths, aka "Windows Shell Remote Code Execution...	Microsoft	Windows 10 Servers, Windows 10	2022-03-25 00:00:00 UTC	CISA
CVE-2019-0903	A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory, aka 'GDI+...	Microsoft	Windows, Windows Server, Windows 10 Version 1903 for 32-bit Systems, Windows 10 Version 1903 for x64-based Systems, Windows 10 Version 1903 for ARM64-based Systems, Windows Server, version 1903 (Server Core installation)	2022-03-25 00:00:00 UTC	CISA
CVE-2019-1003030	A sandbox bypass vulnerability exists in Jenkins Pipeline: Groovy Plugin 2.63 and earlier in pom.xml,...	Jenkins project	Jenkins Pipeline: Groovy Plugin	2022-03-25 00:00:00 UTC	CISA
CVE-2019-10068	An issue was discovered in Kentico 12.0.x before 12.0.15, 11.0.x before 11.0.48, 10.0.x before 10.0.52, and 9.x versions. Due to a failure to...	Kentico	Kentico CMS	2022-03-25 00:00:00 UTC	CISA
CVE-2019-11043	Underflow in PHP-FPM can lead to RCE	PHP	PHP	2022-03-25 00:00:00 UTC	CISA
CVE-2019-12989	Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 allow SQL Injection.	Citrix	SD-WAN	2022-03-25 00:00:00 UTC	CISA
CVE-2019-12991	Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input Validation (issue 5 of 6).	Citrix	SD-WAN	2022-03-25 00:00:00 UTC	CISA
CVE-2019-15107	An issue was discovered in Webmin <=1.920. The parameter old in password_change.cgi contains a command injection vulnerability.	Webmin	Webmin	2022-03-25 00:00:00 UTC	CISA
CVE-2019-16920	Unauthenticated remote code execution occurs in D-Link products such as DIR-655C, DIR-866L, DIR-652, and DHP-1565. The issue occurs when the...	D-Link	n/a	2022-03-25 00:00:00 UTC	CISA
CVE-2019-2616	Vulnerability in the BI Publisher (formerly XML Publisher) component of Oracle Fusion Middleware (subcomponent: BI Publisher Security). Supported...	Oracle Corporation	BI Publisher (formerly XML Publisher)	2022-03-25 00:00:00 UTC	CISA
CVE-2020-1631	Out of Cycle Security Advisory: Junos OS: Security vulnerability in J-Web and web based (HTTP/HTTPS) services	Juniper Networks	Junos OS	2022-03-25 00:00:00 UTC	CISA
CVE-2020-1956	Apache Kylin 2.3.0, and releases up to 2.6.5 and 3.0.1 has some restful apis which will concatenate os command with the user input string, a user...	Apache Software Foundation	Kylin	2022-03-25 00:00:00 UTC	CISA
CVE-2020-2021	PAN-OS: Authentication Bypass in SAML Authentication	Palo Alto Networks	PAN-OS	2022-03-25 00:00:00 UTC	CISA

Displaying vulnerabilities 1126 - 1150 of 1856 in total