Known Exploited Vulnerability Feed
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
2,578
Total KEVs
Known exploited vulnerabilities tracked in KEVIntel
955
Beyond CISA KEV
Additional exploited CVEs tracked beyond CISA KEV
16
KEVs Observed in Sensors (7d)
Tracked KEVs with live exploitation attempts in honeypots
1,676+
Artifacts Available
PoC, Nuclei, and scanner context
| CVE | Product | Vendor | Confidence | Exploitation Status | Sensors | First Seen | Added | Artifacts |
|---|---|---|---|---|---|---|---|---|
| CVE-2019-18426 | WhatsApp Desktop | Confirmed | Active | — | about 4 years ago | about 4 years ago |
PoC
|
|
| CVE-2019-1385 | Windows, Windows Server, Windows 10 Version 1903 for 32-bit Systems, Windows 10 Version 1903 for x64-based Systems, Windows 10 Version 1903 for ARM64-based Systems, Windows Server, version 1903 (Server Core installation) | Microsoft | Confirmed | Active | — | about 4 years ago | about 4 years ago |
—
|
| CVE-2019-1130 | Windows Server, Windows, Windows 10 Version 1903 for 32-bit Systems, Windows 10 Version 1903 for x64-based Systems, Windows 10 Version 1903 for ARM64-based Systems, Windows Server, version 1903 (Server Core installation) | Microsoft | Confirmed | Active | — | about 4 years ago | about 4 years ago |
—
|
| CVE-2018-5002 | Adobe Flash Player 29.0.0.171 and earlier versions | Adobe | Confirmed | Active | — | about 4 years ago | about 4 years ago |
—
|
| CVE-2018-8589 | Windows Server 2008, Windows 7, Windows Server 2008 R2 | Microsoft | Confirmed | Active | — | about 4 years ago | about 4 years ago |
—
|
| CVE-2022-20821 | Cisco IOS XR Software | Cisco | Confirmed | Active | — | about 4 years ago | about 4 years ago |
—
|
| CVE-2021-1048 | Android | Confirmed | Active | — | about 4 years ago | about 4 years ago |
—
|
|
| CVE-2022-22947 | Spring Cloud Gateway | VMware | Confirmed | Active | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
|
| CVE-2022-30525 | USG FLEX 100(W) firmware, USG FLEX 200 firmware, USG FLEX 500 firmware, USG FLEX 700 firmware, ATP series firmware, VPN series firmware, USG FLEX 50(W) firmware, USG 20(W)-VPN firmware | Zyxel | Confirmed | Active | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
|
| CVE-2022-1388 | BIG-IP | F5 | Confirmed | Active | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
|
| CVE-2014-4113 | Windows | Microsoft | Confirmed | Active | — | about 4 years ago | about 4 years ago |
PoC
|
| CVE-2019-8506 | iOS, tvOS, watchOS, Safari, iTunes for Windows, iCloud for Windows | Apple | Confirmed | Active | — | about 4 years ago | about 4 years ago |
—
|
| CVE-2021-1789 | iOS and iPadOS, macOS | Apple | Confirmed | Active | — | about 4 years ago | about 4 years ago |
—
|
| CVE-2014-0160 | OpenSSL | OpenSSL | Confirmed | Active | — | about 4 years ago | about 4 years ago |
PoC
|
| CVE-2014-0322 | Internet Explorer | Microsoft | Confirmed | Active | — | about 4 years ago | about 4 years ago |
PoC
|
| CVE-2019-1003029 | Jenkins Script Security Plugin | Jenkins project | Confirmed | Active | — | about 4 years ago | about 4 years ago |
PoC
|
| CVE-2021-40450 | Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows 10 Version 1909, Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 2004, Windows Server version 2004, Windows 10 Version 20H2, Windows Server version 20H2, Windows 11 version 21H2 | Microsoft | Confirmed | Active | — | about 4 years ago | about 4 years ago |
—
|
| CVE-2022-29464 | WSO2 API Manager, WSO2 Identity Server, WSO2 Identity Server Analytics, WSO2 Enterprise Integrator, WSO2 Open Banking AM, WSO2 Open Banking KM | WSO2 | Confirmed | Active | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
|
| CVE-2022-26904 | Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows 10 Version 1909, Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 20H2, Windows Server version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows 7, Windows 7 Service Pack 1, Windows 8.1, Windows Server 2008 Service Pack 2, Windows Server 2008 Service Pack 2 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 R2 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Server Core installation), Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation) | Microsoft | Confirmed | Active | — | about 4 years ago | about 4 years ago |
PoC
|
| CVE-2022-21919 | Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows 10 Version 1909, Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 20H2, Windows Server version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows 7, Windows 7 Service Pack 1, Windows 8.1, Windows Server 2008 Service Pack 2, Windows Server 2008 Service Pack 2 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 R2 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Server Core installation), Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation) | Microsoft | Confirmed | Active | — | about 4 years ago | about 4 years ago |
—
|
| CVE-2022-0847 | kernel | Linux | Confirmed | Active | — | about 4 years ago | about 4 years ago |
PoC
|
| CVE-2021-41357 | Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 2004, Windows Server version 2004, Windows 10 Version 20H2, Windows Server version 20H2, Windows 11 version 21H2 | Microsoft | Confirmed | Active | — | about 4 years ago | about 4 years ago |
—
|
| CVE-2018-6882 | Collaboration Suite | Zimbra | Confirmed | Active | — | about 4 years ago | about 4 years ago |
PoC
Nuclei
|
| CVE-2022-22718 | Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows 10 Version 1909, Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 20H2, Windows Server version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows 7, Windows 7 Service Pack 1, Windows 8.1, Windows Server 2008 Service Pack 2, Windows Server 2008 Service Pack 2 (Server Core installation), Windows Server 2008 Service Pack 2, Windows Server 2008 R2 Service Pack 1, Windows Server 2008 R2 Service Pack 1 (Server Core installation), Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation) | Microsoft | Confirmed | Active | — | about 4 years ago | about 4 years ago |
—
|
| CVE-2019-3568 | WhatsApp for Android, WhatsApp Business for Android, WhatsApp for iOS, WhatsApp Business for iOS, WhatsApp for Windows Phone, WhatsApp for Tizen | Confirmed | Active | — | about 4 years ago | about 4 years ago |
—
|