Live Exploited Vulnerability Feed
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
| CVE | Product | Vendor | Confidence | Exploitation Status | Sensors | First Seen | Added | Artifacts |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-43300 | iOS and iPadOS, iPadOS, macOS | Apple | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
—
|
| CVE-2025-8876 | N-central | N-able | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
—
|
| CVE-2025-8875 | N-central | N-able | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
—
|
| CVE-2025-54948 | Trend Micro Apex One | Trend Micro, Inc. | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
—
|
| CVE-2013-3893 | Internet Explorer | Microsoft | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
PoC
Scanner
|
| CVE-2007-0671 | Excel | Microsoft | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
—
|
| CVE-2025-8088 | WinRAR | win.rar GmbH | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
—
|
| CVE-2022-40799 | DNR-322L | D-Link | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
PoC
|
| CVE-2020-25079 | DCS-2530L, DCS-2670L | D-Link | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
Scanner
|
| CVE-2020-25078 | DCS-2530L, DCS-2670L | D-Link | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
PoC
Nuclei
Scanner
|
| CVE-2025-47729 | archiving backend | TeleMessage | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
—
|
| CVE-2025-4632 | MagicINFO 9 Server | Samsung Electronics | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
PoC
Nuclei
Scanner
|
| CVE-2025-42999 | SAP NetWeaver (Visual Composer development server) | SAP_SE | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
—
|
| CVE-2025-32756 | FortiNDR, FortiCamera, FortiRecorder, FortiVoice, FortiMail | Fortinet | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
—
|
| CVE-2025-20337 | Cisco Identity Services Engine Software, Cisco ISE Passive Identity Connector | Cisco | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
—
|
| CVE-2025-20281 | Cisco Identity Services Engine Software | Cisco | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
PoC
Nuclei
Scanner
|
| CVE-2023-2533 | PaperCut NG/MF | PaperCut | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
—
|
| CVE-2025-6558 | Chrome | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
—
|
|
| CVE-2025-49706 | Microsoft SharePoint Enterprise Server 2016, Microsoft SharePoint Server 2019, Microsoft SharePoint Server Subscription Edition | Microsoft | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
PoC
Nuclei
Scanner
|
| CVE-2025-49704 | Microsoft SharePoint Enterprise Server 2016, Microsoft SharePoint Server 2019 | Microsoft | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
—
|
| CVE-2025-2776 | SysAid On-Prem | SysAid | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
PoC
Nuclei
Scanner
|
| CVE-2025-2775 | SysAid On-Prem | SysAid | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
PoC
Nuclei
Scanner
|
| CVE-2025-53770 | Microsoft SharePoint Enterprise Server 2016, Microsoft SharePoint Server 2019, Microsoft SharePoint Server Subscription Edition | Microsoft | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
PoC
Nuclei
Scanner
|
| CVE-2025-54309 | CrushFTP | CrushFTP | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
—
|
| CVE-2025-47812 | Wing FTP Server | wftpserver | Confirmed | Active exploitation | — | 17 days ago | 17 days ago |
PoC
Nuclei
Scanner
|