Known Exploited Vulnerability Feed
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
| CVE | Product | Vendor | Confidence | Exploitation Status | Sensors | First Seen | Added | Artifacts |
|---|---|---|---|---|---|---|---|---|
| CVE-2014-0160 | OpenSSL | OpenSSL | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
|
| CVE-2022-29464 | WSO2 API Manager, WSO2 Identity Server, WSO2 Identity Server Analytics, WSO2 Enterprise Integrator, WSO2 Open Banking AM, WSO2 Open Banking KM | WSO2 | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2022-26904 | Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows 10 Version 1909, Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 20H2, Windows Server version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows 7, Windows 7 Service Pack 1, Windows 8.1, Windows Server 2008 Service Pack 2, Windows Server 2008 Service Pack 2 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 R2 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Server Core installation), Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation) | Microsoft | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2022-0847 | kernel | Linux | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2019-1003029 | Jenkins Script Security Plugin | Jenkins project | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2018-6882 | Collaboration Suite | Zimbra | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2022-22960 | VMware Workspace ONE Access, Identity Manager and vRealize Automation | VMware | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2019-3929 | Crestron AirMedia, Barco WePresent, Extron ShareLink, Teq AV IT WIPS710, SHARP PN-L703WA, Optoma WPS-Pro, Blackbox HD WPS, InFocus LiteShow3, and InFocus LiteShow4. | Crestron | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2019-16057 | DNS-320 | D-Link | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2018-7841 | U.motion Builder software version 1.3.4 | U.motion | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2007-3010 | OmniPCX Enterprise Communication Server | Alcatel | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2022-22954 | VMware Workspace ONE Access and Identity Manager | VMware | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2018-7602 | core | Drupal | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2015-5122 | Flash Player | Adobe | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2015-3113 | Flash Player | Adobe | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2015-0313 | Flash Player | Adobe | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2015-0311 | Flash Player | Adobe | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2017-11317 | Telerik UI for ASP.NET AJAX | Progress | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2021-3156 | Sudo | Sudo Project | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2021-31166 | Windows 10 Version 2004, Windows Server version 2004, Windows 10 Version 20H2, Windows Server version 20H2 | Microsoft | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
|
| CVE-2017-0148 | Windows SMB | Microsoft Corporation | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Scanner
|
| CVE-2022-22965 | Spring Framework | VMware | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2021-45382 | DIR-810L, DIR-820L/LW, DIR-826L, DIR-830L, DIR-836L routers | D-link | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2022-1040 | Sophos Firewall | Sophos | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
Scanner
|
| CVE-2021-28799 | HBS 3, HBS 2, HBS 1.3 | QNAP Systems Inc. | Confirmed | Active exploitation | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
Scanner
|