Known Exploited Vulnerability Feed
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
2,578
Total KEVs
Known exploited vulnerabilities tracked in KEVIntel
955
Beyond CISA KEV
Additional exploited CVEs tracked beyond CISA KEV
13
KEVs Observed in Sensors (7d)
Tracked KEVs with live exploitation attempts in honeypots
1,676+
Artifacts Available
PoC, Nuclei, and scanner context
| CVE | Product | Vendor | Confidence | Exploitation Status | Sensors | Added | Artifacts |
|---|---|---|---|---|---|---|---|
| CVE-2024-36858 | Jan v0.4.12 | Jan | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2025-34041 | Endpoint Detection and Response Platform | Sangfor Technologies Co., Ltd. | High | Active | — | 4 months ago |
—
|
| CVE-2024-36857 | Jan v0.4.12 | Jan | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2025-34068 | WLAN AP WEA453e | Samsung Electronics | High | Active | — | 4 months ago |
—
|
| CVE-2024-54763 | A2004 | ipTIME | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2025-5287 | Likes and Dislikes Plugin | erumfaham | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2025-5605 | WSO2 Identity Server, WSO2 Enterprise Integrator, WSO2 Universal Gateway, WSO2 Traffic Manager, WSO2 API Manager, WSO2 API Control Plane, WSO2 Identity Server as Key Manager, WSO2 Open Banking AM, WSO2 Open Banking IAM, org.wso2.carbon:org.wso2.carbon.ui | WSO2 | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2020-11854 | Application Performance Management, Operation Bridge (containerized), Operation Bridge Manager | Micro Focus | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2024-49380 | plenti | plentico | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2024-4443 | Business Directory Plugin – Easy Listing Directories for WordPress | strategy11team | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2024-45388 | hoverfly | SpectoLabs | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2024-50334 | scoold | Erudika | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2024-34257 | EX1800T | TOTOLINK | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2026-21962 | Oracle HTTP Server, Oracle Weblogic Server Proxy Plug-in | Oracle Corporation | High | Active | — | 4 months ago |
PoC
|
| CVE-2020-22165 | Hospital Management System | PHPGurukul | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2022-3481 | WooCommerce Dropshipping | Unknown | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2025-0107 | Cloud NGFW, Expedition, Panorama, PAN-OS, Prisma Access | Palo Alto Networks | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2018-14918 | LGATE-902 | LOYTEC | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2025-68947 | NSecKrnl | NSecsoft | High | Active | — | 4 months ago |
—
|
| CVE-2020-16139 | Unified IP Conference Station 7937G | Cisco | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2021-45092 | Thinfinity VirtualUI | Cybele Software | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2020-35476 | OpenTSDB | OpenTSDB | High | Exploited | — | 4 months ago |
PoC
Nuclei
|
| CVE-2026-21858 | n8n | n8n-io | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2020-26948 | Emby Server | Emby | High | Active | — | 4 months ago |
PoC
Nuclei
|
| CVE-2022-22956 | Workspace ONE Access | VMware | High | Active | — | 5 months ago |
PoC
Nuclei
|