US Public Data LabU.S. public data, made readable
Data areas
Federal Register Congress bills CISA KEV / NVD SEC EDGAR USAspending Defense contracts Trade Economy Energy Places FDA recalls AI Research Grants NIH research grants Fiscal & national debt
Tools
Search Recent Rankings Compare Money flows Timeline Compare indicators Topics
Profiles
Company profiles Agency profiles Glossary
EN
日本語 English
Browse all

Known Exploited Vulnerabilities (CISA KEV) — all

The full CISA KEV catalog of vulnerabilities confirmed exploited in the wild — filter and search by year, ransomware use, and date added.

Clear

1,621 results

UrgencyCVEName / productVendorKEV added
Critical CVE-2017-11357 ↗ Telerik User Interface (UI) for ASP.NET AJAX — Telerik UI for ASP.NET AJAX Ins... Telerik Jan 26, 2023
Critical CVE-2022-47966 ↗ Zoho ManageEngine — Zoho ManageEngine Multiple Products Remote Code Execution... Zoho Jan 23, 2023
High CVE-2022-44877 ↗ CWP Control Web Panel — CWP Control Web Panel OS Command Injection Vulnerabili... CWP Jan 17, 2023
High CVE-2023-21674 ↗ Microsoft Windows — Microsoft Windows Advanced Local Procedure Call (ALPC) Pri... Microsoft Jan 10, 2023
Critical CVE-2022-41080 ↗ Microsoft Exchange Server — Microsoft Exchange Server Privilege Escalation Vul... Microsoft Jan 10, 2023
High CVE-2018-18809 ↗ TIBCO JasperReports — TIBCO JasperReports Library Directory Traversal Vulnerab... TIBCO Dec 29, 2022
High CVE-2018-5430 ↗ TIBCO JasperReports — TIBCO JasperReports Server Information Disclosure Vulner... TIBCO Dec 29, 2022
High CVE-2022-42856 ↗ Apple iOS — Apple iOS Type Confusion Vulnerability Apple Dec 14, 2022
Critical CVE-2022-26501 ↗ Veeam Backup & Replication — Veeam Backup & Replication Remote Code Execution... Veeam Dec 13, 2022
Critical CVE-2022-26500 ↗ Veeam Backup & Replication — Veeam Backup & Replication Remote Code Execution... Veeam Dec 13, 2022
High CVE-2022-27518 ↗ Citrix Application Delivery Controller (ADC) and Gateway — Citrix Application... Citrix Dec 13, 2022
Critical CVE-2022-44698 ↗ Microsoft Defender — Microsoft Defender SmartScreen Security Feature Bypass Vu... Microsoft Dec 13, 2022
Critical CVE-2022-42475 ↗ Fortinet FortiOS — Fortinet FortiOS Heap-Based Buffer Overflow Vulnerability Fortinet Dec 13, 2022
High CVE-2022-4262 ↗ Google Chromium V8 — Google Chromium V8 Type Confusion Vulnerability Google Dec 5, 2022
High CVE-2022-4135 ↗ Google Chromium GPU — Google Chromium GPU Heap Buffer Overflow Vulnerability Google Nov 28, 2022
High CVE-2021-35587 ↗ Oracle Fusion Middleware — Oracle Fusion Middleware Unspecified Vulnerability Oracle Nov 28, 2022
High CVE-2022-41049 ↗ Microsoft Windows — Microsoft Windows Mark of the Web (MOTW) Security Feature... Microsoft Nov 14, 2022
High CVE-2021-25370 ↗ Samsung Mobile Devices — Samsung Mobile Devices Memory Corruption Vulnerabilit... Samsung Nov 8, 2022
High CVE-2021-25369 ↗ Samsung Mobile Devices — Samsung Mobile Devices Improper Access Control Vulner... Samsung Nov 8, 2022
High CVE-2021-25337 ↗ Samsung Mobile Devices — Samsung Mobile Devices Improper Access Control Vulner... Samsung Nov 8, 2022
High CVE-2022-41128 ↗ Microsoft Windows — Microsoft Windows Scripting Languages Remote Code Executio... Microsoft Nov 8, 2022
High CVE-2022-41125 ↗ Microsoft Windows — Microsoft Windows CNG Key Isolation Service Privilege Esca... Microsoft Nov 8, 2022
Critical CVE-2022-41073 ↗ Microsoft Windows — Microsoft Windows Print Spooler Privilege Escalation Vulne... Microsoft Nov 8, 2022
Critical CVE-2022-41091 ↗ Microsoft Windows — Microsoft Windows Mark of the Web (MOTW) Security Feature... Microsoft Nov 8, 2022
High CVE-2022-3723 ↗ Google Chromium V8 — Google Chromium V8 Type Confusion Vulnerability Google Oct 28, 2022
High CVE-2022-42827 ↗ Apple iOS and iPadOS — Apple iOS and iPadOS Out-of-Bounds Write Vulnerability Apple Oct 25, 2022
Critical CVE-2018-19320 ↗ GIGABYTE Multiple Products — GIGABYTE Multiple Products Unspecified Vulnerabil... GIGABYTE Oct 24, 2022
Critical CVE-2018-19321 ↗ GIGABYTE Multiple Products — GIGABYTE Multiple Products Privilege Escalation V... GIGABYTE Oct 24, 2022
Critical CVE-2018-19322 ↗ GIGABYTE Multiple Products — GIGABYTE Multiple Products Code Execution Vulnera... GIGABYTE Oct 24, 2022
Critical CVE-2018-19323 ↗ GIGABYTE Multiple Products — GIGABYTE Multiple Products Privilege Escalation V... GIGABYTE Oct 24, 2022
Critical CVE-2020-3153 ↗ Cisco AnyConnect Secure — Cisco AnyConnect Secure Mobility Client for Windows... Cisco Oct 24, 2022
Critical CVE-2020-3433 ↗ Cisco AnyConnect Secure — Cisco AnyConnect Secure Mobility Client for Windows... Cisco Oct 24, 2022
High CVE-2021-3493 ↗ Linux Kernel — Linux Kernel Privilege Escalation Vulnerability Linux Oct 20, 2022
High CVE-2022-41352 ↗ Synacor Zimbra Collaboration Suite (ZCS) — Synacor Zimbra Collaboration Suite... Synacor Oct 20, 2022
High CVE-2022-41033 ↗ Microsoft Windows COM+ Event System Service — Microsoft Windows COM+ Event Sys... Microsoft Oct 11, 2022
Critical CVE-2022-40684 ↗ Fortinet Multiple Products — Fortinet Multiple Products Authentication Bypass... Fortinet Oct 11, 2022
High CVE-2022-36804 ↗ Atlassian Bitbucket Server and Data Center — Atlassian Bitbucket Server and Da... Atlassian Sep 30, 2022
Critical CVE-2022-41040 ↗ Microsoft Exchange Server — Microsoft Exchange Server Server-Side Request Forg... Microsoft Sep 30, 2022
Critical CVE-2022-41082 ↗ Microsoft Exchange Server — Microsoft Exchange Server Remote Code Execution Vu... Microsoft Sep 30, 2022
High CVE-2022-3236 ↗ Sophos Firewall — Sophos Firewall Code Injection Vulnerability Sophos Sep 23, 2022
High CVE-2022-35405 ↗ Zoho ManageEngine — Zoho ManageEngine Multiple Products Remote Code Execution... Zoho Sep 22, 2022
High CVE-2010-2568 ↗ Microsoft Windows — Microsoft Windows Remote Code Execution Vulnerability Microsoft Sep 15, 2022
High CVE-2013-2094 ↗ Linux Kernel — Linux Kernel Privilege Escalation Vulnerability Linux Sep 15, 2022
High CVE-2013-2596 ↗ Linux Kernel — Linux Kernel Integer Overflow Vulnerability Linux Sep 15, 2022
High CVE-2013-2597 ↗ Code Aurora ACDB Audio Driver — Code Aurora ACDB Audio Driver Stack-based Buff... Code Aurora Sep 15, 2022
High CVE-2013-6282 ↗ Linux Kernel — Linux Kernel Improper Input Validation Vulnerability Linux Sep 15, 2022
High CVE-2022-40139 ↗ Trend Micro Apex One and Apex One as a Service — Trend Micro Apex One and Apex... Trend Micro Sep 15, 2022
High CVE-2022-32917 ↗ Apple iOS, iPadOS, and macOS — Apple iOS, iPadOS, and macOS Remote Code Execut... Apple Sep 14, 2022
High CVE-2022-37969 ↗ Microsoft Windows — Microsoft Windows Common Log File System (CLFS) Driver Pri... Microsoft Sep 14, 2022
High CVE-2011-1823 ↗ Android Android OS — Android OS Privilege Escalation Vulnerability Android Sep 8, 2022

Source: official U.S. government open data. This is an organized index, not an official U.S. government site. "Explained" links to our summary page; otherwise links go to the official primary source.

Disclaimer: This site independently summarizes and classifies information based on official data sources. Always verify the latest and accurate information with the official sources. Content on finance, health, legal, and security is information, not advice. This site is not an official website of the U.S. government.