US Public Data LabU.S. public data, made readable
Data areas
Federal Register Congress bills CISA KEV / NVD SEC EDGAR USAspending Defense contracts Trade Economy Energy Places FDA recalls AI Research Grants NIH research grants Fiscal & national debt
Tools
Search Recent Rankings Compare Money flows Timeline Compare indicators Topics
Profiles
Company profiles Agency profiles Glossary
EN
日本語 English
Browse all

Known Exploited Vulnerabilities (CISA KEV) — all

The full CISA KEV catalog of vulnerabilities confirmed exploited in the wild — filter and search by year, ransomware use, and date added.

Clear

1,621 results

UrgencyCVEName / productVendorKEV added
High CVE-2023-20273 ↗ Cisco Cisco IOS XE Web UI — Cisco IOS XE Web UI Command Injection Vulnerabilit... Cisco Oct 23, 2023
Critical CVE-2023-4966 ↗ Citrix NetScaler ADC and NetScaler Gateway — Citrix NetScaler ADC and NetScale... Citrix Oct 18, 2023
High CVE-2023-20198 ↗ Cisco IOS XE Web UI — Cisco IOS XE Web UI Privilege Escalation Vulnerability Cisco Oct 16, 2023
High CVE-2023-44487 ↗ IETF HTTP/2 — HTTP/2 Rapid Reset Attack Vulnerability IETF Oct 10, 2023
High CVE-2023-36563 ↗ Microsoft WordPad — Microsoft WordPad Information Disclosure Vulnerability Microsoft Oct 10, 2023
High CVE-2023-41763 ↗ Microsoft Skype for Business — Microsoft Skype for Business Privilege Escalati... Microsoft Oct 10, 2023
High CVE-2023-20109 ↗ Cisco IOS and IOS XE — Cisco IOS and IOS XE Group Encrypted Transport VPN Out-... Cisco Oct 10, 2023
High CVE-2023-21608 ↗ Adobe Acrobat and Reader — Adobe Acrobat and Reader Use-After-Free Vulnerabili... Adobe Oct 10, 2023
High CVE-2023-42824 ↗ Apple iOS and iPadOS — Apple iOS and iPadOS Kernel Privilege Escalation Vulner... Apple Oct 5, 2023
Critical CVE-2023-40044 ↗ Progress WS_FTP Server — Progress WS_FTP Server Deserialization of Untrusted D... Progress Oct 5, 2023
Critical CVE-2023-22515 ↗ Atlassian Confluence Data Center and Server — Atlassian Confluence Data Center... Atlassian Oct 5, 2023
High CVE-2023-28229 ↗ Microsoft Windows CNG Key Isolation Service — Microsoft Windows CNG Key Isolat... Microsoft Oct 4, 2023
Critical CVE-2023-42793 ↗ JetBrains TeamCity — JetBrains TeamCity Authentication Bypass Vulnerability JetBrains Oct 4, 2023
High CVE-2023-4211 ↗ Arm Mali GPU Kernel Driver — Arm Mali GPU Kernel Driver Use-After-Free Vulnera... Arm Oct 3, 2023
High CVE-2023-5217 ↗ Google Chromium libvpx — Google Chromium libvpx Heap Buffer Overflow Vulnerabi... Google Oct 2, 2023
High CVE-2018-14667 ↗ Red Hat JBoss RichFaces Framework — Red Hat JBoss RichFaces Framework Expressi... Red Hat Sep 28, 2023
High CVE-2023-41993 ↗ Apple Multiple Products — Apple Multiple Products WebKit Code Execution Vulner... Apple Sep 25, 2023
High CVE-2023-41992 ↗ Apple Multiple Products — Apple Multiple Products Kernel Privilege Escalation... Apple Sep 25, 2023
High CVE-2023-41991 ↗ Apple Multiple Products — Apple Multiple Products Improper Certificate Validat... Apple Sep 25, 2023
High CVE-2023-41179 ↗ Trend Micro Apex One and Worry-Free Business Security — Trend Micro Apex One a... Trend Micro Sep 21, 2023
High CVE-2023-28434 ↗ MinIO MinIO — MinIO Security Feature Bypass Vulnerability MinIO Sep 19, 2023
Critical CVE-2021-3129 ↗ Laravel Ignition — Laravel Ignition File Upload Vulnerability Laravel Sep 18, 2023
Critical CVE-2017-6884 ↗ Zyxel EMG2926 Routers — Zyxel EMG2926 Routers Command Injection Vulnerability Zyxel Sep 18, 2023
High CVE-2014-8361 ↗ Realtek SDK — Realtek SDK Improper Input Validation Vulnerability Realtek Sep 18, 2023
High CVE-2022-22265 ↗ Samsung Mobile Devices — Samsung Mobile Devices Use-After-Free Vulnerability Samsung Sep 18, 2023
High CVE-2023-26369 ↗ Adobe Acrobat and Reader — Adobe Acrobat and Reader Out-of-Bounds Write Vulner... Adobe Sep 14, 2023
High CVE-2023-4863 ↗ Google Chromium WebP — Google Chromium WebP Heap-Based Buffer Overflow Vulnera... Google Sep 13, 2023
Critical CVE-2023-20269 ↗ Cisco Adaptive Security Appliance and Firepower Threat Defense — Cisco Adaptiv... Cisco Sep 13, 2023
High CVE-2023-35674 ↗ Android Framework — Android Framework Privilege Escalation Vulnerability Android Sep 13, 2023
High CVE-2023-36802 ↗ Microsoft Streaming Service Proxy — Microsoft Streaming Service Proxy Privileg... Microsoft Sep 12, 2023
High CVE-2023-36761 ↗ Microsoft Word — Microsoft Word Information Disclosure Vulnerability Microsoft Sep 12, 2023
High CVE-2023-41061 ↗ Apple iOS, iPadOS, and watchOS — Apple iOS, iPadOS, and watchOS Wallet Code Ex... Apple Sep 11, 2023
High CVE-2023-41064 ↗ Apple iOS, iPadOS, and macOS — Apple iOS, iPadOS, and macOS ImageIO Buffer Ove... Apple Sep 11, 2023
High CVE-2023-33246 ↗ Apache RocketMQ — Apache RocketMQ Command Execution Vulnerability Apache Sep 6, 2023
High CVE-2023-32315 ↗ Ignite Realtime Openfire — Ignite Realtime Openfire Path Traversal Vulnerabili... Ignite Realtime Aug 24, 2023
Critical CVE-2023-38831 ↗ RARLAB WinRAR — RARLAB WinRAR Code Execution Vulnerability RARLAB Aug 24, 2023
Critical CVE-2023-27532 ↗ Veeam Backup & Replication — Veeam Backup & Replication Cloud Connect Missing... Veeam Aug 22, 2023
Critical CVE-2023-38035 ↗ Ivanti Sentry — Ivanti Sentry Authentication Bypass Vulnerability Ivanti Aug 22, 2023
High CVE-2023-26359 ↗ Adobe ColdFusion — Adobe ColdFusion Deserialization of Untrusted Data Vulnerab... Adobe Aug 21, 2023
High CVE-2023-24489 ↗ Citrix Content Collaboration — Citrix Content Collaboration ShareFile Improper... Citrix Aug 16, 2023
High CVE-2023-38180 ↗ Microsoft .NET Core and Visual Studio — Microsoft .NET Core and Visual Studio... Microsoft Aug 9, 2023
High CVE-2017-18368 ↗ Zyxel P660HN-T1A Routers — Zyxel P660HN-T1A Routers Command Injection Vulnerab... Zyxel Aug 7, 2023
High CVE-2023-35081 ↗ Ivanti Endpoint Manager Mobile (EPMM) — Ivanti Endpoint Manager Mobile (EPMM)... Ivanti Jul 31, 2023
High CVE-2023-37580 ↗ Synacor Zimbra Collaboration Suite (ZCS) — Synacor Zimbra Collaboration Suite... Synacor Jul 27, 2023
High CVE-2023-38606 ↗ Apple Multiple Products — Apple Multiple Products Kernel Unspecified Vulnerabi... Apple Jul 26, 2023
Critical CVE-2023-35078 ↗ Ivanti Endpoint Manager Mobile (EPMM) — Ivanti Endpoint Manager Mobile Authent... Ivanti Jul 25, 2023
High CVE-2023-38205 ↗ Adobe ColdFusion — Adobe ColdFusion Improper Access Control Vulnerability Adobe Jul 20, 2023
High CVE-2023-29298 ↗ Adobe ColdFusion — Adobe ColdFusion Improper Access Control Vulnerability Adobe Jul 20, 2023
Critical CVE-2023-3519 ↗ Citrix NetScaler ADC and NetScaler Gateway — Citrix NetScaler ADC and NetScale... Citrix Jul 19, 2023
Critical CVE-2023-36884 ↗ Microsoft Windows — Microsoft Windows Search Remote Code Execution Vulnerabili... Microsoft Jul 17, 2023

Source: official U.S. government open data. This is an organized index, not an official U.S. government site. "Explained" links to our summary page; otherwise links go to the official primary source.

Disclaimer: This site independently summarizes and classifies information based on official data sources. Always verify the latest and accurate information with the official sources. Content on finance, health, legal, and security is information, not advice. This site is not an official website of the U.S. government.