Known Exploited Vulnerability Feed
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
2,578
Total KEVs
Known exploited vulnerabilities tracked in KEVIntel
955
Beyond CISA KEV
Additional exploited CVEs tracked beyond CISA KEV
14
KEVs Observed in Sensors (7d)
Tracked KEVs with live exploitation attempts in honeypots
1,676+
Artifacts Available
PoC, Nuclei, and scanner context
| CVE | Product | Vendor | Confidence | Exploitation Status | Sensors | First Seen | Added | Artifacts |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-33009 | ATP series firmware, USG FLEX series firmware, USG FLEX 50(W) firmware, USG20(W)-VPN firmware, VPN series firmware, ZyWALL/USG series firmware | Zyxel | Confirmed | Active | — | about 3 years ago | about 3 years ago |
Nessus
|
| CVE-2023-33010 | ATP series firmware, USG FLEX series firmware, USG FLEX 50(W) firmware, USG20(W)-VPN firmware, VPN series firmware, ZyWALL/USG series firmware | Zyxel | Confirmed | Active | — | about 3 years ago | about 3 years ago |
Nessus
|
| CVE-2023-34362 | MOVEit Transfer | Progress | Confirmed | Active | — | about 3 years ago | about 3 years ago |
PoC
Nuclei
|
| CVE-2023-27640 | Custom Product Designer | PrestaShop | High | Active | — | about 3 years ago | about 3 years ago |
PoC
Nuclei
|
| CVE-2023-27639 | Custom Product Designer | PrestaShop | High | Active | — | about 3 years ago | about 3 years ago |
PoC
Nuclei
|
| CVE-2023-28771 | ZyWALL/USG series firmware, VPN series firmware, USG FLEX series firmware, ATP series firmware | Zyxel | Confirmed | Active | — | about 3 years ago | about 3 years ago |
PoC
|
| CVE-2023-2868 | Barracuda Email Security Gateway | Barracuda | Confirmed | Active | — | about 3 years ago | about 3 years ago |
PoC
Nessus
|
| CVE-2023-33297 | Bitcoin Core | Bitcoin | High | Active | — | about 3 years ago | about 3 years ago |
—
|
| CVE-2023-32373 | macOS, Safari, watchOS, iOS and iPadOS, tvOS | Apple | Confirmed | Active | — | about 3 years ago | about 3 years ago |
Nessus
|
| CVE-2023-28204 | macOS, Safari, watchOS, iOS and iPadOS, tvOS | Apple | Confirmed | Active | — | about 3 years ago | about 3 years ago |
Nessus
|
| CVE-2023-32409 | macOS, Safari, watchOS, iOS and iPadOS, tvOS | Apple | Confirmed | Active | — | about 3 years ago | about 3 years ago |
Nessus
|
| CVE-2023-21492 | Samsung Mobile Devices | Samsung Mobile | Confirmed | Active | — | about 3 years ago | about 3 years ago |
—
|
| CVE-2004-1464 | IOS | Cisco | Confirmed | Active | — | about 3 years ago | about 3 years ago |
Nessus
|
| CVE-2016-6415 | IOS, IOS XE, IOS XR, PIX | Cisco | Confirmed | Active | — | about 3 years ago | about 3 years ago |
PoC
Nessus
|
| CVE-2023-32243 | Essential Addons for Elementor | WPDeveloper | High | Exploited | — | about 3 years ago | about 3 years ago |
PoC
Nuclei
|
| CVE-2014-0196 | kernel | Linux | Confirmed | Active | — | about 3 years ago | about 3 years ago |
PoC
Nessus
|
| CVE-2023-25717 | Admin | Ruckus Wireless | Confirmed | Active | — | about 3 years ago | about 3 years ago |
PoC
Nuclei
|
| CVE-2021-3560 | polkit | Linux | Confirmed | Active | — | about 3 years ago | about 3 years ago |
PoC
|
| CVE-2016-8735 | Apache Tomcat | Apache Software Foundation | Confirmed | Active | — | about 3 years ago | about 3 years ago |
PoC
Nuclei
|
| CVE-2016-3427 | Java SE | Oracle | Confirmed | Active | — | about 3 years ago | about 3 years ago |
Nessus
|
| CVE-2015-5317 | Jenkins | Jenkins | Confirmed | Active | — | about 3 years ago | about 3 years ago |
Nessus
|
| CVE-2010-3904 | Linux Kernel | Linux | Confirmed | Active | — | about 3 years ago | about 3 years ago |
PoC
|
| CVE-2023-24932 | Windows Server 2025 (Server Core installation), Windows 11 Version 24H2, Windows Server 2025, Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows 10 Version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 11 version 22H2, Windows 10 Version 22H2, Windows 11 version 22H3, Windows 11 Version 23H2, Windows Server 2022, 23H2 Edition (Server Core installation), Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 Service Pack 2 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 R2 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Server Core installation), Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation) | Microsoft | High | Active | — | about 3 years ago | about 3 years ago |
—
|
| CVE-2023-29336 | Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 Service Pack 2 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 R2 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Server Core installation), Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation) | Microsoft | Confirmed | Active | — | about 3 years ago | about 3 years ago |
PoC
Nessus
|
| CVE-2023-1389 | TP-Link Archer AX21 (AX1800) | TP-Link | Confirmed | Active | Yes | about 3 years ago | about 3 years ago |
PoC
Nuclei
Nessus
|