Known Exploited Vulnerability Feed
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
| CVE | Product | Vendor | Confidence | Exploitation Status | Sensors | First Seen | Added | Artifacts |
|---|---|---|---|---|---|---|---|---|
| CVE-2013-3896 | Silverlight | Microsoft | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2013-2423 | Java SE | Oracle | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2013-0431 | Java SE | Oracle | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2013-0422 | Java | Oracle | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2013-0074 | Silverlight | Microsoft | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
Scanner
|
| CVE-2010-0840 | Java SE | Oracle | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2010-0738 | JBoss Enterprise Application Platform | Red Hat | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2018-8611 | Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers | Microsoft | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
|
| CVE-2017-0147 | Windows SMB | Microsoft Corporation | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2017-8291 | Ghostscript | Artifex | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
|
| CVE-2017-18362 | ManagedITSync integration for Kaseya VSA | ConnectWise | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2016-4655 | iOS | Apple | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
Scanner
|
| CVE-2016-4656 | iOS | Apple | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
Scanner
|
| CVE-2016-4657 | iOS | Apple | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2016-6366 | Adaptive Security Appliance (ASA) Software | Cisco | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
|
| CVE-2019-5786 | Chrome | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
|
| CVE-2019-13720 | Chrome | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
|
|
| CVE-2019-11707 | Firefox ESR, Firefox, Thunderbird | Mozilla | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
|
| CVE-2019-11708 | Firefox ESR, Firefox, Thunderbird | Mozilla | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
|
| CVE-2019-18426 | WhatsApp Desktop | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
|
|
| CVE-2022-30525 | USG FLEX 100(W) firmware, USG FLEX 200 firmware, USG FLEX 500 firmware, USG FLEX 700 firmware, ATP series firmware, VPN series firmware, USG FLEX 50(W) firmware, USG 20(W)-VPN firmware | Zyxel | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2022-22947 | Spring Cloud Gateway | VMware | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2022-1388 | BIG-IP | F5 | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2014-4113 | Windows | Microsoft | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2014-0322 | Internet Explorer | Microsoft | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|