US Public Data LabU.S. public data, made readable
Data areas
Federal Register Congress bills CISA KEV / NVD SEC EDGAR USAspending Defense contracts Trade Economy Energy Places FDA recalls AI Research Grants NIH research grants Fiscal & national debt
Tools
Search Recent Rankings Compare Money flows Timeline Compare indicators Topics
Profiles
Company profiles Agency profiles Glossary
EN
日本語 English
Browse all

Known Exploited Vulnerabilities (CISA KEV) — all

The full CISA KEV catalog of vulnerabilities confirmed exploited in the wild — filter and search by year, ransomware use, and date added.

Clear

1,622 results

UrgencyCVEName / productVendorKEV added
High CVE-2021-22600 ↗ Linux Kernel — Linux Kernel Privilege Escalation Vulnerability Linux Apr 11, 2022
High CVE-2021-27852 ↗ Checkbox Checkbox Survey — Checkbox Survey Deserialization of Untrusted Data V... Checkbox Apr 11, 2022
High CVE-2021-39793 ↗ Google Pixel — Google Pixel Out-of-Bounds Write Vulnerability Google Apr 11, 2022
Critical CVE-2021-42278 ↗ Microsoft Active Directory — Microsoft Active Directory Domain Services Privil... Microsoft Apr 11, 2022
Critical CVE-2021-42287 ↗ Microsoft Active Directory — Microsoft Active Directory Domain Services Privil... Microsoft Apr 11, 2022
High CVE-2022-23176 ↗ WatchGuard Firebox and XTM — WatchGuard Firebox and XTM Privilege Escalation V... WatchGuard Apr 11, 2022
Critical CVE-2017-0148 ↗ Microsoft SMBv1 server — Microsoft SMBv1 Server Remote Code Execution Vulnerab... Microsoft Apr 6, 2022
High CVE-2021-31166 ↗ Microsoft HTTP Protocol Stack — Microsoft HTTP Protocol Stack Remote Code Exec... Microsoft Apr 6, 2022
High CVE-2021-3156 ↗ Sudo Sudo — Sudo Heap-Based Buffer Overflow Vulnerability Sudo Apr 6, 2022
High CVE-2021-45382 ↗ D-Link Multiple Routers — D-Link Multiple Routers Remote Code Execution Vulner... D-Link Apr 4, 2022
High CVE-2022-22674 ↗ Apple macOS — Apple macOS Out-of-Bounds Read Vulnerability Apple Apr 4, 2022
High CVE-2022-22675 ↗ Apple macOS — Apple macOS Out-of-Bounds Write Vulnerability Apple Apr 4, 2022
High CVE-2022-22965 ↗ VMware Spring Framework — Spring Framework JDK 9+ Remote Code Execution Vulner... VMware Apr 4, 2022
High CVE-2018-10561 ↗ Dasan Gigabit Passive Optical Network (GPON) Routers — Dasan GPON Routers Auth... Dasan Mar 31, 2022
Critical CVE-2018-10562 ↗ Dasan Gigabit Passive Optical Network (GPON) Routers — Dasan GPON Routers Comm... Dasan Mar 31, 2022
High CVE-2021-21551 ↗ Dell dbutil Driver — Dell dbutil Driver Insufficient Access Control Vulnerabil... Dell Mar 31, 2022
Critical CVE-2021-28799 ↗ QNAP Network Attached Storage (NAS) — QNAP NAS Improper Authorization Vulnerab... QNAP Mar 31, 2022
High CVE-2021-34484 ↗ Microsoft Windows — Microsoft Windows User Profile Service Privilege Escalatio... Microsoft Mar 31, 2022
High CVE-2022-1040 ↗ Sophos Firewall — Sophos Firewall Authentication Bypass Vulnerability Sophos Mar 31, 2022
High CVE-2022-26871 ↗ Trend Micro Apex Central — Trend Micro Apex Central Arbitrary File Upload Vuln... Trend Micro Mar 31, 2022
High CVE-2010-4398 ↗ Microsoft Windows — Microsoft Windows Kernel Stack-Based Buffer Overflow Vulne... Microsoft Mar 28, 2022
High CVE-2011-2005 ↗ Microsoft Ancillary Function Driver (afd.sys) — Microsoft Ancillary Function D... Microsoft Mar 28, 2022
High CVE-2012-0518 ↗ Oracle Fusion Middleware — Oracle Fusion Middleware Unspecified Vulnerability Oracle Mar 28, 2022
High CVE-2012-2034 ↗ Adobe Flash Player — Adobe Flash Player Memory Corruption Vulnerability Adobe Mar 28, 2022
High CVE-2012-2539 ↗ Microsoft Word — Microsoft Word Remote Code Execution Vulnerability Microsoft Mar 28, 2022
High CVE-2012-5076 ↗ Oracle Java SE — Oracle Java SE Sandbox Bypass Vulnerability Oracle Mar 28, 2022
High CVE-2013-1690 ↗ Mozilla Firefox and Thunderbird — Mozilla Firefox and Thunderbird Denial-of-Se... Mozilla Mar 28, 2022
Critical CVE-2013-2465 ↗ Oracle Java SE — Oracle Java SE Unspecified Vulnerability Oracle Mar 28, 2022
Critical CVE-2013-2551 ↗ Microsoft Internet Explorer — Microsoft Internet Explorer Use-After-Free Vulne... Microsoft Mar 28, 2022
High CVE-2013-2729 ↗ Adobe Reader and Acrobat — Adobe Reader and Acrobat Arbitrary Integer Overflow... Adobe Mar 28, 2022
High CVE-2013-3660 ↗ Microsoft Win32k — Microsoft Win32k Privilege Escalation Vulnerability Microsoft Mar 28, 2022
High CVE-2015-1770 ↗ Microsoft Office — Microsoft Office Uninitialized Memory Use Vulnerability Microsoft Mar 28, 2022
High CVE-2015-2419 ↗ Microsoft Internet Explorer — Microsoft Internet Explorer Memory Corruption Vu... Microsoft Mar 28, 2022
High CVE-2015-2426 ↗ Microsoft Windows — Microsoft Windows Adobe Type Manager Library Remote Code E... Microsoft Mar 28, 2022
High CVE-2016-0040 ↗ Microsoft Windows — Microsoft Windows Kernel Privilege Escalation Vulnerabilit... Microsoft Mar 28, 2022
Critical CVE-2016-0151 ↗ Microsoft Client-Server Run-time Subsystem (CSRSS) — Microsoft Windows CSRSS S... Microsoft Mar 28, 2022
High CVE-2016-0189 ↗ Microsoft Internet Explorer — Microsoft Internet Explorer Memory Corruption Vu... Microsoft Mar 28, 2022
High CVE-2016-7200 ↗ Microsoft Edge — Microsoft Edge Memory Corruption Vulnerability Microsoft Mar 28, 2022
High CVE-2016-7201 ↗ Microsoft Edge — Microsoft Edge Memory Corruption Vulnerability Microsoft Mar 28, 2022
High CVE-2017-0037 ↗ Microsoft Edge and Internet Explorer — Microsoft Edge and Internet Explorer Ty... Microsoft Mar 28, 2022
High CVE-2017-0059 ↗ Microsoft Internet Explorer — Microsoft Internet Explorer Information Disclosu... Microsoft Mar 28, 2022
Critical CVE-2017-0213 ↗ Microsoft Windows — Microsoft Windows Privilege Escalation Vulnerability Microsoft Mar 28, 2022
Critical CVE-2018-8405 ↗ Microsoft DirectX Graphics Kernel (DXGKRNL) — Microsoft DirectX Graphics Kerne... Microsoft Mar 28, 2022
Critical CVE-2018-8406 ↗ Microsoft DirectX Graphics Kernel (DXGKRNL) — Microsoft DirectX Graphics Kerne... Microsoft Mar 28, 2022
Critical CVE-2018-8440 ↗ Microsoft Windows — Microsoft Windows Privilege Escalation Vulnerability Microsoft Mar 28, 2022
High CVE-2019-7483 ↗ SonicWall SMA100 — SonicWall SMA100 Directory Traversal Vulnerability SonicWall Mar 28, 2022
Critical CVE-2021-20028 ↗ SonicWall Secure Remote Access (SRA) — SonicWall Secure Remote Access (SRA) SQ... SonicWall Mar 28, 2022
Critical CVE-2021-26085 ↗ Atlassian Confluence Server — Atlassian Confluence Server Pre-Authorization Ar... Atlassian Mar 28, 2022
High CVE-2021-34486 ↗ Microsoft Windows — Microsoft Windows Event Tracing Privilege Escalation Vulne... Microsoft Mar 28, 2022
Critical CVE-2021-38646 ↗ Microsoft Office — Microsoft Office Access Connectivity Engine Remote Code Exe... Microsoft Mar 28, 2022

Source: official U.S. government open data. This is an organized index, not an official U.S. government site. "Explained" links to our summary page; otherwise links go to the official primary source.

Disclaimer: This site independently summarizes and classifies information based on official data sources. Always verify the latest and accurate information with the official sources. Content on finance, health, legal, and security is information, not advice. This site is not an official website of the U.S. government.