Known Exploited Vulnerability Feed
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
2,578
Total KEVs
Known exploited vulnerabilities tracked in KEVIntel
955
Beyond CISA KEV
Additional exploited CVEs tracked beyond CISA KEV
16
KEVs Observed in Sensors (7d)
Tracked KEVs with live exploitation attempts in honeypots
1,676+
Artifacts Available
PoC, Nuclei, and scanner context
| CVE | Product | Vendor | Confidence | Exploitation Status | Sensors | First Seen | Added | Artifacts |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-0127 | RV132W ADSL2+ Wireless-N VPN Router, RV134W VDSL2 Wireless-AC VPN Router | Cisco | High | Active | — | 12 months ago | 12 months ago |
PoC
Nuclei
|
| CVE-2018-14912 | CGit | Zx2c4 | High | Active | — | 12 months ago | 12 months ago |
PoC
Nuclei
|
| CVE-2020-11455 | LimeSurvey | LimeSurvey | High | Active | — | 12 months ago | 12 months ago |
PoC
Nuclei
|
| CVE-2025-1974 | ingress-nginx | kubernetes | High | Exploited | — | 12 months ago | 12 months ago |
PoC
Nuclei
|
| CVE-2018-11222 | Pandora FMS | Artica | High | Active | — | 12 months ago | 12 months ago |
PoC
Nuclei
|
| CVE-2017-8226 | IPM-721S | Amcrest | High | Active | — | 12 months ago | 12 months ago |
—
|
| CVE-2017-1000170 | jqueryFileTree | jqueryFileTree | High | Active | — | 12 months ago | 12 months ago |
PoC
Nuclei
|
| CVE-2021-41293 | ECS Router Controller ECS (FLASH), RiskBuster Terminator E6L45, RiskBuster System RB 3.0.0, RiskBuster System TRANE 1.0, Graphic Control Software, SmartHome II E9246, RiskTerminator | ECOA | High | Active | — | 12 months ago | 12 months ago |
PoC
Nuclei
|
| CVE-2024-7120 | MSG1200, MSG2100E, MSG2200, MSG2300 | Raisecom | High | Exploited | — | 12 months ago | 12 months ago |
PoC
Nuclei
|
| CVE-2025-23121 | Backup and Recovery | Veeam | High | Active | — | about 1 year ago | about 1 year ago |
—
|
| CVE-2024-9644 | F3x36 | Four-Faith | High | Active | — | about 1 year ago | about 1 year ago |
—
|
| CVE-2021-29442 | nacos | alibaba | High | Active | — | about 1 year ago | about 1 year ago |
PoC
Nuclei
|
| CVE-2025-4123 | Grafana | Grafana | High | Active | — | about 1 year ago | about 1 year ago |
PoC
Nuclei
|
| CVE-2022-48164 | WL-WN533A8 | Wavlink | High | Active | — | about 1 year ago | about 1 year ago |
PoC
Nuclei
|
| CVE-2022-39960 | Jira | Atlassian | High | Active | — | about 1 year ago | about 1 year ago |
PoC
Nuclei
|
| CVE-2022-31847 | WN579 X3 | WAVLINK | High | Active | — | about 1 year ago | about 1 year ago |
PoC
Nuclei
|
| CVE-2022-0540 | Jira Core Server, Jira Software Server, Jira Software Data Center, Jira Service Management Server, Jira Service Management Data Center | Atlassian | High | Exploited | — | about 1 year ago | about 1 year ago |
PoC
Nuclei
|
| CVE-2020-8209 | XenMobile Server | Citrix | High | Exploited | — | about 1 year ago | about 1 year ago |
PoC
Nuclei
|
| CVE-2020-8191 | Citrix ADC and Citrix Gateway | Citrix | High | Active | — | about 1 year ago | about 1 year ago |
PoC
Nuclei
|
| CVE-2021-20837 | Movable Type | Six Apart Ltd. | High | Active | — | about 1 year ago | about 1 year ago |
PoC
Nuclei
|
| CVE-2019-12987 | SD-WAN | Citrix | High | Active | — | about 1 year ago | about 1 year ago |
PoC
Nuclei
|
| CVE-2019-12990 | SD-WAN | Citrix | High | Active | — | about 1 year ago | about 1 year ago |
PoC
Nuclei
|
| CVE-2019-12986 | SD-WAN | Citrix | High | Active | — | about 1 year ago | about 1 year ago |
PoC
Nuclei
|
| CVE-2019-12985 | SD-WAN | Citrix | High | Active | — | about 1 year ago | about 1 year ago |
PoC
Nuclei
|
| CVE-2021-34624 | ProfilePress | ProfilePress | High | Active | — | about 1 year ago | about 1 year ago |
PoC
Nuclei
|