US Public Data LabU.S. public data, made readable
Data areas
Federal Register Congress bills CISA KEV / NVD SEC EDGAR USAspending Defense contracts Trade Economy Energy Places FDA recalls AI Research Grants NIH research grants Fiscal & national debt
Tools
Search Recent Rankings Compare Money flows Timeline Compare indicators Topics
Profiles
Company profiles Agency profiles Glossary
EN
日本語 English
Browse all

Known Exploited Vulnerabilities (CISA KEV) — all

The full CISA KEV catalog of vulnerabilities confirmed exploited in the wild — filter and search by year, ransomware use, and date added.

Clear

1,622 results

UrgencyCVEName / productVendorKEV added
Critical CVE-2019-5544 ↗ VMware VMware ESXi and Horizon DaaS — VMware ESXi and Horizon DaaS OpenSLP Hea... VMware Nov 3, 2021
High CVE-2020-17496 ↗ vBulletin vBulletin — vBulletin PHP Module Remote Code Execution Vulnerability vBulletin Nov 3, 2021
High CVE-2019-16759 ↗ vBulletin vBulletin — vBulletin PHP Module Remote Code Execution Vulnerability vBulletin Nov 3, 2021
High CVE-2020-5847 ↗ Unraid Unraid — Unraid Remote Code Execution Vulnerability Unraid Nov 3, 2021
High CVE-2020-5849 ↗ Unraid Unraid — Unraid Authentication Bypass Vulnerability Unraid Nov 3, 2021
High CVE-2019-20085 ↗ TVT NVMS-1000 — TVT NVMS-1000 Directory Traversal Vulnerability TVT Nov 3, 2021
High CVE-2021-36741 ↗ Trend Micro Apex One, Apex One as a Service, and Worry-Free Business Security... Trend Micro Nov 3, 2021
High CVE-2021-36742 ↗ Trend Micro Apex One, Apex One as a Service, and Worry-Free Business Security... Trend Micro Nov 3, 2021
High CVE-2020-8599 ↗ Trend Micro Apex One and OfficeScan — Trend Micro Apex One and OfficeScan Auth... Trend Micro Nov 3, 2021
High CVE-2020-24557 ↗ Trend Micro Apex One, OfficeScan, and Worry-Free Business Security — Trend Mic... Trend Micro Nov 3, 2021
High CVE-2020-8468 ↗ Trend Micro Apex One, OfficeScan and Worry-Free Business Security Agents — Tre... Trend Micro Nov 3, 2021
High CVE-2020-8467 ↗ Trend Micro Apex One and OfficeScan — Trend Micro Apex One and OfficeScan Remo... Trend Micro Nov 3, 2021
High CVE-2019-18187 ↗ Trend Micro OfficeScan — Trend Micro OfficeScan Directory Traversal Vulnerabil... Trend Micro Nov 3, 2021
High CVE-2019-9082 ↗ ThinkPHP ThinkPHP — ThinkPHP Remote Code Execution Vulnerability ThinkPHP Nov 3, 2021
High CVE-2018-20062 ↗ ThinkPHP noneCms — ThinkPHP "noneCms" Remote Code Execution Vulnerability ThinkPHP Nov 3, 2021
High CVE-2018-14558 ↗ Tenda AC7, AC9, and AC10 Routers — Tenda AC7, AC9, and AC10 Routers Command In... Tenda Nov 3, 2021
High CVE-2020-10987 ↗ Tenda AC1900 Router AC15 Model — Tenda AC1900 Router AC15 Model Remote Code Ex... Tenda Nov 3, 2021
High CVE-2021-31755 ↗ Tenda AC11 Router — Tenda AC11 Router Stack Buffer Overflow Vulnerability Tenda Nov 3, 2021
High CVE-2017-9248 ↗ Progress ASP.NET AJAX and Sitefinity — Progress Telerik UI for ASP.NET AJAX an... Progress Nov 3, 2021
High CVE-2019-18988 ↗ TeamViewer Desktop — TeamViewer Desktop Bypass Remote Login Vulnerability TeamViewer Nov 3, 2021
High CVE-2017-6327 ↗ Symantec Symantec Messaging Gateway — Symantec Messaging Gateway Remote Code E... Symantec Nov 3, 2021
High CVE-2020-10181 ↗ Sumavision Enhanced Multimedia Router (EMR) — Sumavision EMR Cross-Site Reques... Sumavision Nov 3, 2021
Critical CVE-2020-12271 ↗ Sophos SFOS — Sophos SFOS SQL Injection Vulnerability Sophos Nov 3, 2021
Critical CVE-2021-20016 ↗ SonicWall SSLVPN SMA100 — SonicWall SSLVPN SMA100 SQL Injection Vulnerability SonicWall Nov 3, 2021
Critical CVE-2021-20023 ↗ SonicWall SonicWall Email Security — SonicWall Email Security Path Traversal V... SonicWall Nov 3, 2021
Critical CVE-2021-20022 ↗ SonicWall SonicWall Email Security — SonicWall Email Security Unrestricted Upl... SonicWall Nov 3, 2021
Critical CVE-2019-7481 ↗ SonicWall SMA100 — SonicWall SMA100 SQL Injection Vulnerability SonicWall Nov 3, 2021
Critical CVE-2021-20021 ↗ SonicWall SonicWall Email Security — SonicWall Email Security Improper Privile... SonicWall Nov 3, 2021
High CVE-2020-10199 ↗ Sonatype Nexus Repository — Sonatype Nexus Repository Remote Code Execution Vu... Sonatype Nov 3, 2021
High CVE-2016-3643 ↗ SolarWinds Virtualization Manager — SolarWinds Virtualization Manager Privileg... SolarWinds Nov 3, 2021
Critical CVE-2021-35211 ↗ SolarWinds Serv-U — SolarWinds Serv-U Remote Code Execution Vulnerability SolarWinds Nov 3, 2021
High CVE-2020-10148 ↗ SolarWinds Orion — SolarWinds Orion Authentication Bypass Vulnerability SolarWinds Nov 3, 2021
High CVE-2019-16256 ↗ SIMalliance Toolbox Browser — SIMalliance Toolbox Browser Command Injection Vu... SIMalliance Nov 3, 2021
High CVE-2016-3976 ↗ SAP NetWeaver — SAP NetWeaver Directory Traversal Vulnerability SAP Nov 3, 2021
High CVE-2020-6207 ↗ SAP Solution Manager — SAP Solution Manager Missing Authentication for Critica... SAP Nov 3, 2021
High CVE-2020-6287 ↗ SAP NetWeaver — SAP NetWeaver Missing Authentication for Critical Function Vul... SAP Nov 3, 2021
High CVE-2016-9563 ↗ SAP NetWeaver — SAP NetWeaver XML External Entity (XXE) Vulnerability SAP Nov 3, 2021
High CVE-2010-5326 ↗ SAP NetWeaver — SAP NetWeaver Remote Code Execution Vulnerability SAP Nov 3, 2021
Critical CVE-2018-2380 ↗ SAP Customer Relationship Management (CRM) — SAP Customer Relationship Managem... SAP Nov 3, 2021
High CVE-2020-16846 ↗ SaltStack Salt — SaltStack Salt Shell Injection Vulnerability SaltStack Nov 3, 2021
High CVE-2020-11651 ↗ SaltStack Salt — SaltStack Salt Authentication Bypass Vulnerability SaltStack Nov 3, 2021
High CVE-2020-11652 ↗ SaltStack Salt — SaltStack Salt Path Traversal Vulnerability SaltStack Nov 3, 2021
High CVE-2017-16651 ↗ Roundcube Roundcube Webmail — Roundcube Webmail File Disclosure Vulnerability Roundcube Nov 3, 2021
High CVE-2021-35395 ↗ Realtek AP-Router SDK — Realtek AP-Router SDK Buffer Overflow Vulnerability Realtek Nov 3, 2021
High CVE-2020-10221 ↗ rConfig rConfig — rConfig OS Command Injection Vulnerability rConfig Nov 3, 2021
High CVE-2021-1905 ↗ Qualcomm Multiple Chipsets — Qualcomm Multiple Chipsets Use-After-Free Vulnera... Qualcomm Nov 3, 2021
High CVE-2021-1906 ↗ Qualcomm Multiple Chipsets — Qualcomm Multiple Chipsets Detection of Error Con... Qualcomm Nov 3, 2021
Critical CVE-2019-11539 ↗ Ivanti Pulse Connect Secure and Pulse Policy Secure — Ivanti Pulse Connect Sec... Ivanti Nov 3, 2021
Critical CVE-2019-11510 ↗ Ivanti Pulse Connect Secure — Ivanti Pulse Connect Secure Arbitrary File Read... Ivanti Nov 3, 2021
High CVE-2021-22899 ↗ Ivanti Pulse Connect Secure — Ivanti Pulse Connect Secure Command Injection Vu... Ivanti Nov 3, 2021

Source: official U.S. government open data. This is an organized index, not an official U.S. government site. "Explained" links to our summary page; otherwise links go to the official primary source.

Disclaimer: This site independently summarizes and classifies information based on official data sources. Always verify the latest and accurate information with the official sources. Content on finance, health, legal, and security is information, not advice. This site is not an official website of the U.S. government.