Known Exploited Vulnerability Feed
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
2,578
Total KEVs
Known exploited vulnerabilities tracked in KEVIntel
955
Beyond CISA KEV
Additional exploited CVEs tracked beyond CISA KEV
14
KEVs Observed in Sensors (7d)
Tracked KEVs with live exploitation attempts in honeypots
1,676+
Artifacts Available
PoC, Nuclei, and scanner context
| CVE | Product | Vendor | Confidence | Exploitation Status | Sensors | First Seen | Added | Artifacts |
|---|---|---|---|---|---|---|---|---|
| CVE-2014-1776 | Internet Explorer | Microsoft | Confirmed | Active | — | over 4 years ago | over 4 years ago |
—
|
| CVE-2020-0787 | Windows, Windows Server, Windows 10 Version 1909 for 32-bit Systems, Windows 10 Version 1909 for x64-based Systems, Windows 10 Version 1909 for ARM64-based Systems, Windows Server, version 1909 (Server Core installation), Windows 10 Version 1903 for 32-bit Systems, Windows 10 Version 1903 for x64-based Systems, Windows 10 Version 1903 for ARM64-based Systems, Windows Server, version 1903 (Server Core installation) | Microsoft | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
|
| CVE-2020-5722 | Grandstream UCM6200 Series | Grandstream | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
Nuclei
|
| CVE-2021-20038 | SonicWall SMA100 | SonicWall | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
Nuclei
|
| CVE-2014-6271 | Bash | GNU | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
Nuclei
|
| CVE-2018-8453 | Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers | Microsoft | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
|
| CVE-2021-35247 | Serv-U | SolarWinds | Confirmed | Active | — | over 4 years ago | over 4 years ago |
—
|
| CVE-2012-0391 | Struts | Apache | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
|
| CVE-2006-1547 | Struts | Apache Software Foundation | Confirmed | Active | — | over 4 years ago | over 4 years ago |
—
|
| CVE-2021-40870 | Controller | Aviatrix | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
Nuclei
|
| CVE-2021-25298 | Nagios XI | Nagios | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
Nuclei
|
| CVE-2021-25297 | Nagios XI | Nagios | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
Nuclei
|
| CVE-2021-25296 | Nagios XI | Nagios | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
Nuclei
|
| CVE-2021-32648 | october | octobercms | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
Nuclei
|
| CVE-2020-14864 | Business Intelligence Enterprise Edition | Oracle Corporation | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
Nuclei
|
| CVE-2021-21315 | systeminformation | sebhildebrandt | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
Nuclei
|
| CVE-2021-21975 | VMware vRealize Operations | VMware | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
Nuclei
|
| CVE-2021-33766 | Microsoft Exchange Server 2019 Cumulative Update 9, Microsoft Exchange Server 2016 Cumulative Update 20, Microsoft Exchange Server 2013 Cumulative Update 23, Microsoft Exchange Server 2016 Cumulative Update 19, Microsoft Exchange Server 2019 Cumulative Update 8 | Microsoft | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
Nuclei
|
| CVE-2021-22991 | BIG-IP | F5 | Confirmed | Active | — | over 4 years ago | over 4 years ago |
—
|
| CVE-2020-13927 | Apache Airflow | Apache | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
Nuclei
|
| CVE-2020-11978 | Apache Airflow | Apache Software Foundation | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
Nuclei
|
| CVE-2020-13671 | Drupal Core | Drupal | Confirmed | Active | — | over 4 years ago | over 4 years ago |
—
|
| CVE-2022-21894 | Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows 10 Version 1909, Windows 10 Version 21H1, Windows Server 2022, Windows 10 Version 20H2, Windows Server version 20H2, Windows 11 version 21H2, Windows 10 Version 21H2, Windows 10 Version 1507, Windows 10 Version 1607, Windows Server 2016, Windows Server 2016 (Server Core installation), Windows 8.1, Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation) | Microsoft | High | Exploited | — | over 4 years ago | over 4 years ago |
PoC
|
| CVE-2019-1579 | Palo Alto Networks GlobalProtect Portal/Gateway Interface | Palo Alto Networks | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
|
| CVE-2019-10149 | exim | exim | Confirmed | Active | — | over 4 years ago | over 4 years ago |
PoC
|