Known Exploited Vulnerability Feed

Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.

RSS Free KEV JSON Feed Email alerts

2,578

Total KEVs

Known exploited vulnerabilities tracked in KEVIntel

955

Beyond CISA KEV

Additional exploited CVEs tracked beyond CISA KEV

KEVs Observed in Sensors (7d)

Tracked KEVs with live exploitation attempts in honeypots

1,676+

Artifacts Available

PoC, Nuclei, and scanner context

All KEVs Not in CISA KEV Observed in Sensors High Confidence Artifacts Available

CVE	Product	Vendor	Confidence	Exploitation Status	Sensors	First Seen	Added	Artifacts
CVE-2013-3906	Windows, Office, Office Compatibility Pack, Lync	Microsoft	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC
CVE-2017-9841	PHPUnit	PHPUnit	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC Nuclei
CVE-2018-15982	Flash Player	Adobe	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC
CVE-2014-1761	Word	Microsoft	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC
CVE-2022-22620	Safari (v and ), macOS	Apple	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC
CVE-2021-36934	Windows 10 Version 1809, Windows 10 Version 1909, Windows 10 Version 21H1, Windows 10 Version 2004, Windows 10 Version 20H2	Microsoft	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC
CVE-2020-0796	Windows 10 Version 1903 for 32-bit Systems, Windows 10 Version 1903 for x64-based Systems, Windows 10 Version 1903 for ARM64-based Systems, Windows Server, version 1903 (Server Core installation), Windows 10 Version 1909 for 32-bit Systems, Windows 10 Version 1909 for x64-based Systems, Windows 10 Version 1909 for ARM64-based Systems, Windows Server, version 1909 (Server Core installation)	Microsoft	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC Nuclei
CVE-2018-1000861	Jenkins	Jenkins	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC Nuclei
CVE-2017-9791	Apache Struts	Apache Software Foundation	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC Nuclei
CVE-2017-8464	Windows Shell	Microsoft Corporation	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC
CVE-2017-10271	WebLogic Server	Oracle Corporation	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC Nuclei
CVE-2017-0263	Microsoft Windows	Microsoft Corporation	Confirmed	Active	—	over 4 years ago	over 4 years ago	—
CVE-2017-0262	Microsoft Office	Microsoft Corporation	Confirmed	Active	—	over 4 years ago	over 4 years ago	—
CVE-2017-0145	Windows SMB	Microsoft Corporation	Confirmed	Active	—	over 4 years ago	over 4 years ago	—
CVE-2017-0144	Windows SMB	Microsoft Corporation	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC
CVE-2016-3088	ActiveMQ	Apache	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC Nuclei
CVE-2015-2051	DIR-645 Wired/Wireless Router	D-Link	Confirmed	Active	—	over 4 years ago	over 4 years ago	—
CVE-2015-1635	Windows	Microsoft	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC Nuclei
CVE-2015-1130	OS X	Apple	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC
CVE-2014-4404	iOS, Apple TV	Apple	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC
CVE-2022-21882	Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows 10 Version 1909, Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 20H2, Windows Server version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2	Microsoft	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC
CVE-2022-23597	Element Desktop	Element	High	Active	—	over 4 years ago	over 4 years ago	—
CVE-2017-5689	Intel Active Mangement Technology, Intel Small Business Technology, Intel Standard Manageability	Intel Corporation	Confirmed	Active	—	over 4 years ago	over 4 years ago	PoC Nuclei
CVE-2022-22587	iOS and iPadOS, macOS	Apple	Confirmed	Active	—	over 4 years ago	over 4 years ago	—
CVE-2014-7169	Bash	GNU	Confirmed	Active	—	over 4 years ago	over 4 years ago	—

Displaying vulnerabilities 2051 - 2075 of 2578 in total