1,619 totalEPSS avg 51.6%

KEVKnown Exploited Vulnerabilities

CISA’s actively-exploited catalogue · refreshed weekly · authored by Adam Lundqvist

Showing 1,619 of 1,619 · page 1 of 33

CVEVendor / ProductTitleKEV addedEPSS
CVE-2026-35273Oracle / PeopleSoft Enterprise PeopleToolsOracle PeopleSoft Enterprise PeopleTools Missing Authentication for Critical …2026-06-12
0.7%
CVE-2026-10520Ivanti / SentryIvanti Sentry OS Command Injection Vulnerability2026-06-11
59.5%
CVE-2026-11645Google / Chromium V8Google Chromium V8 Out-of-Bounds Read and Write Vulnerability2026-06-09
0.7%
CVE-2026-20245Cisco / Catalyst SD-WAN ManagerCisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnera…2026-06-09
1.0%
CVE-2026-7473Arista / Extensible Operating SystemArista Extensible Operating System Incomplete Comparison with Missing Factors…2026-06-09
0.4%
CVE-2026-42271BerriAI / LiteLLMBerriAI LiteLLM Command Injection Vulnerability2026-06-08
53.7%
CVE-2026-50751Check Point / Security GatewayCheck Point Security Gateway Improper Authentication Vulnerability2026-06-08
41.2%
CVE-2026-28318SolarWinds / Serv-USolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability2026-06-05
1.1%
CVE-2026-45247Mirasvit / Mirasvit Full Page Cache WarmerMirasvit Full Page Cache Warmer Deserialization of Untrusted Data Vulnerability2026-06-03
1.5%
CVE-2022-0492Linux / KernelLinux Kernel Improper Authentication Vulnerability2026-06-02
5.5%
CVE-2025-48595Android / FrameworkAndroid Framework Integer Overflow Vulnerability2026-06-02
0.1%
CVE-2024-21182Oracle / WebLogic ServerOracle WebLogic Server Unspecified Vulnerability2026-06-01
48.2%
CVE-2026-0257Palo Alto Networks / PAN-OSPalo Alto Networks PAN-OS Authentication Bypass Vulnerability2026-05-29
18.6%
CVE-2026-45321TanStack / TanStackTanStack Unspecified Vulnerability2026-05-27
1.6%
CVE-2026-48027Nx / Nx ConsoleNx Console Embedded Malicious Code Vulnerability2026-05-27
1.0%
CVE-2026-8398Daemon / Daemon Tools LiteDaemon Tools Lite Embedded Malicious Code Vulnerability2026-05-27
0.8%
CVE-2026-48172LiteSpeed / cPanel PluginLiteSpeed cPanel Plugin Privilege Escalation Vulnerability2026-05-26
1.2%
CVE-2026-9082Drupal / CoreDrupal Core SQL Injection Vulnerability2026-05-22
33.7%
CVE-2025-34291Langflow / LangflowLangflow Origin Validation Error Vulnerability2026-05-21
25.2%
CVE-2026-34926Trend Micro / Apex OneTrend Micro Apex One (On-Premise) Directory Traversal Vulnerability2026-05-21
1.1%
CVE-2008-4250Microsoft / WindowsMicrosoft Windows Buffer Overflow Vulnerability2026-05-20
98.8%
CVE-2009-1537Microsoft / DirectXMicrosoft DirectX NULL Byte Overwrite Vulnerability2026-05-20
50.9%
CVE-2009-3459Adobe / Acrobat and ReaderAdobe Acrobat and Reader Heap-Based Buffer Overflow Vulnerability2026-05-20
86.5%
CVE-2010-0249Microsoft / Internet ExplorerMicrosoft Internet Explorer Use-After-Free Vulnerability2026-05-20
91.9%
CVE-2010-0806Microsoft / Internet ExplorerMicrosoft Internet Explorer Use-After-Free Vulnerability2026-05-20
82.0%
CVE-2026-41091Microsoft / DefenderMicrosoft Defender Link Following Vulnerability2026-05-20
1.2%
CVE-2026-45498Microsoft / DefenderMicrosoft Defender Denial of Service Vulnerability2026-05-20
2.5%
CVE-2026-42897microsoft / exchange_serverCVE-2026-428972026-05-15
2.5%
CVE-2026-20182cisco / catalyst_sd-wan_managerCVE-2026-201822026-05-14
77.9%
CVE-2026-42208BerriAI / LiteLLMBerriAI LiteLLM SQL Injection Vulnerability2026-05-08
93.1%
CVE-2026-6973Ivanti / Endpoint Manager Mobile (EPMM)Ivanti Endpoint Manager Mobile (EPMM) Improper Input Validation Vulnerability2026-05-07
20.2%
CVE-2026-0300Palo Alto Networks / PAN-OSPalo Alto Networks PAN-OS Out-of-bounds Write Vulnerability2026-05-06
31.8%
CVE-2026-31431Linux / KernelLinux Kernel Incorrect Resource Transfer Between Spheres Vulnerability2026-05-01
94.0%
CVE-2026-41940WebPros / cPanel & WHM and WP2 (WordPress Squared)WebPros cPanel & WHM and WP2 (WordPress Squared) Missing Authentication for C…2026-04-30
90.5%
CVE-2024-1708ConnectWise / ScreenConnectConnectWise ScreenConnect Path Traversal Vulnerability2026-04-28
87.6%
CVE-2026-32202Microsoft / WindowsMicrosoft Windows Protection Mechanism Failure Vulnerability2026-04-28
20.0%
CVE-2024-57726SimpleHelp / SimpleHelpSimpleHelp Missing Authorization Vulnerability2026-04-24
9.3%
CVE-2024-57728SimpleHelp / SimpleHelpSimpleHelp Path Traversal Vulnerability2026-04-24
7.5%
CVE-2024-7399Samsung / MagicINFO 9 ServerSamsung MagicINFO 9 Server Path Traversal Vulnerability2026-04-24
91.9%
CVE-2025-29635D-Link / DIR-823XD-Link DIR-823X Command Injection Vulnerability2026-04-24
35.1%
CVE-2026-39987Marimo / MarimoMarimo Remote Code Execution Vulnerability2026-04-23
95.6%
CVE-2026-33825Microsoft / DefenderMicrosoft Defender Insufficient Granularity of Access Control Vulnerability2026-04-22
6.2%
CVE-2023-27351PaperCut / NG/MFPaperCut NG/MF Improper Authentication Vulnerability2026-04-20
78.4%
CVE-2024-27199JetBrains / TeamCityJetBrains TeamCity Relative Path Traversal Vulnerability2026-04-20
100.0%
CVE-2025-2749Kentico / Kentico XperienceKentico Xperience Path Traversal Vulnerability2026-04-20
3.8%
CVE-2025-32975Quest / KACE Systems Management Appliance (SMA)Quest KACE Systems Management Appliance (SMA) Improper Authentication Vulnera…2026-04-20
2.4%
CVE-2025-48700Synacor / Zimbra Collaboration Suite (ZCS)Synacor Zimbra Collaboration Suite (ZCS) Cross-site Scripting Vulnerability2026-04-20
1.8%
CVE-2026-20122Cisco / Catalyst SD-WAN MangerCisco Catalyst SD-WAN Manager Incorrect Use of Privileged APIs Vulnerability2026-04-20
6.1%
CVE-2026-20128Cisco / Catalyst SD-WAN ManagerCisco Catalyst SD-WAN Manager Storing Passwords in a Recoverable Format Vulne…2026-04-20
4.6%
CVE-2026-20133Cisco / Catalyst SD-WAN ManagerCisco Catalyst SD-WAN Manager Exposure of Sensitive Information to an Unautho…2026-04-20
9.0%
Sourced from CISA Known Exploited Vulnerabilities — current weekly refresh. EPSS scores from FIRST.org via epss.cyentia.com. Curated by Adam Lundqvist, Founder at SQUR.