Keep updated with KEVIntel progress and pro features

Known Exploited Vulnerabilities Intel

This table displays known exploited vulnerabilities (KEVs) that have been cataloged from over 50 public sources, including CISA, and (once we get some hits) our own private sensors. Each entry links to a CVE identifier, where the CVE details are enriched with EPSS scores, online mentions, scanner inclusion, exploitation, and other metadata. The goal is to be an early warning system, even before being published by CISA. More data and features coming soon!

CVE ID	Title	Vendor	Product	Added	Source
CVE-2024-50603	An issue was discovered in Aviatrix Controller before 7.1.4191 and 7.2.x before 7.2.4996. Due to the improper neutralization of special elements...	Aviatrix	Controller	2025-01-16 00:00:00 UTC	CISA
CVE-2025-21334	Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability	Microsoft	Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows Server 2025 (Server Core installation), Windows 11 version 22H3, Windows 11 Version 23H2, Windows Server 2022, 23H2 Edition (Server Core installation), Windows 11 Version 24H2, Windows Server 2025	2025-01-14 00:00:00 UTC	CISA
CVE-2025-21335	Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability	Microsoft	Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows Server 2025 (Server Core installation), Windows 11 version 22H3, Windows 11 Version 23H2, Windows Server 2022, 23H2 Edition (Server Core installation), Windows 11 Version 24H2, Windows Server 2025	2025-01-14 00:00:00 UTC	CISA
CVE-2025-21333	Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability	Microsoft	Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows Server 2025 (Server Core installation), Windows 11 version 22H3, Windows 11 Version 23H2, Windows Server 2022, 23H2 Edition (Server Core installation), Windows 11 Version 24H2, Windows Server 2025	2025-01-14 00:00:00 UTC	CISA
CVE-2024-55591	An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] affecting FortiOS version 7.0.0 through 7.0.16 and FortiProxy...	Fortinet	FortiOS, FortiProxy	2025-01-14 00:00:00 UTC	CISA
CVE-2024-12686	Command Injection vulnerability in Remote Support(RS) & Privilege Remote Access (PRA)	BeyondTrust	Remote Support(RS) & Privileged Remote Access(PRA)	2025-01-13 00:00:00 UTC	CISA
CVE-2023-48365	Qlik Sense Enterprise for Windows before August 2023 Patch 2 allows unauthenticated remote code execution, aka QB-21683. Due to improper validation...	n/a	n/a	2025-01-13 00:00:00 UTC	CISA
CVE-2025-0282	A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.5, Ivanti Policy Secure before version 22.7R1.2, and Ivanti Neurons...	Ivanti	Connect Secure, Policy Secure, Neurons for ZTA gateways	2025-01-08 00:00:00 UTC	CISA
CVE-2020-2883	Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are...	Oracle Corporation	WebLogic Server	2025-01-07 00:00:00 UTC	CISA
CVE-2024-41713	A vulnerability in the NuPoint Unified Messaging (NPM) component of Mitel MiCollab through 9.8 SP1 FP2 (9.8.1.201) could allow an unauthenticated...	n/a	n/a	2025-01-07 00:00:00 UTC	CISA
CVE-2024-55550	Mitel MiCollab through 9.8 SP2 could allow an authenticated attacker with administrative privilege to conduct a local file read, due to...	n/a	n/a	2025-01-07 00:00:00 UTC	CISA
CVE-2024-3393	PAN-OS: Firewall Denial of Service (DoS) in DNS Security Using a Specially Crafted Packet	Palo Alto Networks	Cloud NGFW, PAN-OS	2024-12-30 00:00:00 UTC	CISA
CVE-2021-44207	Acclaim USAHERDS through 7.4.0.1 uses hard-coded credentials.	n/a	n/a	2024-12-23 00:00:00 UTC	CISA
CVE-2024-12356	Command Injection Vulnerability in Remote Support(RS) & Privileged Remote Access (PRA)	BeyondTrust	Remote Support, Privileged Remote Access	2024-12-19 00:00:00 UTC	CISA
CVE-2021-40407	An OS command injection vulnerability exists in the device network settings functionality of reolink RLC-410W v3.0.0.136_20121102. At [1] or [2],...	n/a	n/a	2024-12-18 00:00:00 UTC	CISA
CVE-2018-14933	upgrade_handle.php on NUUO NVRmini devices allows Remote Command Execution via shell metacharacters in the uploaddir parameter for a writeuploaddir...	n/a	n/a	2024-12-18 00:00:00 UTC	CISA
CVE-2022-23227	NUUO NVRmini2 through 3.11 allows an unauthenticated attacker to upload an encrypted TAR archive, which can be abused to add arbitrary users...	n/a	n/a	2024-12-18 00:00:00 UTC	CISA
CVE-2019-11001	On Reolink RLC-410W, C1 Pro, C2 Pro, RLC-422W, and RLC-511W devices through 1.0.227, an authenticated admin can use the "TestEmail" functionality...	n/a	n/a	2024-12-18 00:00:00 UTC	CISA
CVE-2024-55956	In Cleo Harmony before 5.8.0.24, VLTrader before 5.8.0.24, and LexiCom before 5.8.0.24, an unauthenticated user can import and execute arbitrary...	n/a	n/a	2024-12-17 00:00:00 UTC	CISA
CVE-2024-20767	ColdFusion \| Improper Access Control (CWE-284)	Adobe	ColdFusion	2024-12-16 00:00:00 UTC	CISA
CVE-2024-35250	Windows Kernel-Mode Driver Elevation of Privilege Vulnerability	Microsoft	Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows 11 version 22H3, Windows 11 Version 23H2, Windows Server 2022, 23H2 Edition (Server Core installation), Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 Service Pack 2 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 R2 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Server Core installation), Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation)	2024-12-16 00:00:00 UTC	CISA
CVE-2024-50623	In Cleo Harmony before 5.8.0.21, VLTrader before 5.8.0.21, and LexiCom before 5.8.0.21, there is an unrestricted file upload and download that...	n/a	n/a	2024-12-13 00:00:00 UTC	CISA
CVE-2024-49138	Windows Common Log File System Driver Elevation of Privilege Vulnerability	Microsoft	Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows Server 2025 (Server Core installation), Windows 11 version 22H3, Windows 11 Version 23H2, Windows Server 2022, 23H2 Edition (Server Core installation), Windows 11 Version 24H2, Windows Server 2025, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 Service Pack 2 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 R2 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Server Core installation), Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation)	2024-12-10 00:00:00 UTC	CISA
CVE-2024-51378	getresetstatus in dns/views.py and ftp/views.py in CyberPanel (aka Cyber Panel) before 1c0c6cb allows remote attackers to bypass authentication and...	n/a	n/a	2024-12-04 00:00:00 UTC	CISA
CVE-2024-11667	A directory traversal vulnerability in the web management interface of Zyxel ATP series firmware versions V5.00 through V5.38, USG FLEX series...	Zyxel	ATP series firmware, USG FLEX series firmware, USG FLEX 50(W) series firmware, USG20(W)-VPN series firmware	2024-12-03 00:00:00 UTC	CISA

Displaying vulnerabilities 151 - 175 of 1400 in total