Known Exploited Vulnerabilities

Focus on What Matters

There are 303,201 vulnerabilities in the CVE database.
Whilst only 0.7% are ever actively exploited.

This list contains the vulnerabilities that are actively exploited by malware and threat actors that you should prioritize first.

This table displays known exploited vulnerabilities (KEVs) that have been cataloged from over 60 public sources, including CISA, and our own private sensors. Each entry links to a CVE identifier, where the CVE details are enriched with EPSS scores, online mentions, scanner inclusion, exploitation, tags, and other metadata. The goal is to be an early warning system, even before being published by CISA. More data and features coming soon!

CVE ID	Title	Vendor	Product	Added	Source
CVE-2019-2215	A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit...	Google	Android	2021-11-03 00:00:00 UTC	CISA
CVE-2020-5735	Amcrest cameras and NVR are vulnerable to a stack-based buffer overflow over port 37777. An authenticated remote attacker can abuse this issue to...	n/a	Amcrest	2021-11-03 00:00:00 UTC	CISA
CVE-2018-4878	A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the...	Adobe	Adobe Flash Player before 28.0.0.161	2021-11-03 00:00:00 UTC	CISA
CVE-2018-15961	Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have an unrestricted file upload...	Adobe	ColdFusion	2021-11-03 00:00:00 UTC	CISA
CVE-2018-4939	Adobe ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions have an exploitable Deserialization of Untrusted Data...	Adobe	Adobe ColdFusion ColdFusion Update 5 and earlier versions, ColdFusion 11 Update 13 and earlier versions	2021-11-03 00:00:00 UTC	CISA
CVE-2021-28550	Adobe Acrobat Reader use after free vulnerability could lead to arbitrary code execution	Adobe	Acrobat Reader	2021-11-03 00:00:00 UTC	CISA
CVE-2021-21017	Acrobat Reader DC Heap-based Buffer Overflow Vulnerability Could Lead To Arbitrary Code Execution	Adobe	Acrobat Reader	2021-11-03 00:00:00 UTC	CISA
CVE-2021-27103	Accellion FTA 9_12_411 and earlier is affected by SSRF via a crafted POST request to wmProgressstat.html. The fixed version is FTA_9_12_416 and later.	n/a	n/a	2021-11-03 00:00:00 UTC	CISA
CVE-2021-27101	Accellion FTA 9_12_370 and earlier is affected by SQL injection via a crafted Host header in a request to document_root.html. The fixed version is...	n/a	n/a	2021-11-03 00:00:00 UTC	CISA
CVE-2021-27102	Accellion FTA 9_12_411 and earlier is affected by OS command execution via a local web service call. The fixed version is FTA_9_12_416 and later.	n/a	n/a	2021-11-03 00:00:00 UTC	CISA
CVE-2021-27104	Accellion FTA 9_12_370 and earlier is affected by OS command execution via a crafted POST request to various admin endpoints. The fixed version is...	n/a	n/a	2021-11-03 00:00:00 UTC	CISA
CVE-2020-4006	VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector address have a command injection vulnerability.	n/a	VMware Workspace One Access (Access), VMware Workspace One Access Connector (Access Connector), VMware Identity Manager (vIDM), VMware Identity Manager Connector (vIDM Connector), VMware Cloud Foundation, vRealize Suite Lifecycle Manager	2021-11-03 00:00:00 UTC	CISA
CVE-2021-21985	The vSphere Client (HTML5) contains a remote code execution vulnerability due to lack of input validation in the Virtual SAN Health Check plug-in...	n/a	VMware vCenter Server and VMware Cloud Foundation	2021-11-03 00:00:00 UTC	CISA
CVE-2021-21972	The vSphere Client (HTML5) contains a remote code execution vulnerability in a vCenter Server plugin. A malicious actor with network access to port...	n/a	VMware vCenter Server, VMware Cloud Foundation	2021-11-03 00:00:00 UTC	CISA
CVE-2020-3952	Under certain conditions, vmdir that ships with VMware vCenter Server, as part of an embedded or external Platform Services Controller (PSC), does...	n/a	VMware vCenter Server	2021-11-03 00:00:00 UTC	CISA
CVE-2021-22005	The vCenter Server contains an arbitrary file upload vulnerability in the Analytics service. A malicious actor with network access to port 443 on...	n/a	VMware vCenter Server, VMware Cloud Foundation	2021-11-03 00:00:00 UTC	CISA
CVE-2020-3950	VMware Fusion (11.x before 11.5.2), VMware Remote Console for Mac (11.x and prior before 11.0.1) and Horizon Client for Mac (5.x and prior before...	n/a	VMware Fusion, VMware Remote Console for Mac and Horizon Client for Mac	2021-11-03 00:00:00 UTC	CISA
CVE-2020-3992	OpenSLP as used in VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202010401-SG, 6.5 before ESXi650-202010401-SG) has a...	n/a	VMware ESXi	2021-11-03 00:00:00 UTC	CISA
CVE-2019-5544	OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the...	VMware	ESXi and Horizon DaaS	2021-11-03 00:00:00 UTC	CISA
CVE-2020-17496	vBulletin 5.5.4 through 5.6.2 allows remote command execution via crafted subWidgets data in an ajax/render/widget_tabbedcontainer_tab_panel...	n/a	n/a	2021-11-03 00:00:00 UTC	CISA
CVE-2019-16759	vBulletin 5.x through 5.5.4 allows remote command execution via the widgetConfig[code] parameter in an ajax/render/widget_php routestring request.	vBulletin	vBulletin	2021-11-03 00:00:00 UTC	CISA
CVE-2020-5847	Unraid through 6.8.0 allows Remote Code Execution.	n/a	n/a	2021-11-03 00:00:00 UTC	CISA
CVE-2020-5849	Unraid 6.8.0 allows authentication bypass.	n/a	n/a	2021-11-03 00:00:00 UTC	CISA
CVE-2019-20085	TVT NVMS-1000 devices allow GET /.. Directory Traversal	TVT	NVMS-1000	2021-11-03 00:00:00 UTC	CISA
CVE-2021-36741	An improper input validation vulnerability in Trend Micro Apex One, Apex One as a Service, OfficeScan XG, and Worry-Free Business Security 10.0 SP1...	Trend Micro	Trend Micro Apex One, Trend Micro OfficeScan, Trend Micro Worry-Free Business Security	2021-11-03 00:00:00 UTC	CISA

Displaying vulnerabilities 1701 - 1725 of 1990 in total