1,619 totalEPSS avg 51.6%

KEVKnown Exploited Vulnerabilities

CISA’s actively-exploited catalogue · refreshed weekly · authored by Adam Lundqvist

VendorEPSS ≥0%Since

Showing 1,619 of 1,619 · page 32 of 33

CVE	Vendor / Product	Title	KEV added	EPSS
CVE-2021-26857	Microsoft / Exchange Server	Microsoft Exchange Server Remote Code Execution Vulnerability	2021-11-03	94.0%
CVE-2021-26858	Microsoft / Exchange Server	Microsoft Exchange Server Remote Code Execution Vulnerability	2021-11-03	89.5%
CVE-2021-27059	Microsoft / Office	Microsoft Office Remote Code Execution Vulnerability	2021-11-03	3.2%
CVE-2021-27065	Microsoft / Exchange Server	Microsoft Exchange Server Remote Code Execution Vulnerability	2021-11-03	99.9%
CVE-2021-27085	Microsoft / Internet Explorer	Microsoft Internet Explorer Remote Code Execution Vulnerability	2021-11-03	3.7%
CVE-2021-27101	Accellion / FTA	Accellion FTA SQL Injection Vulnerability	2021-11-03	6.0%
CVE-2021-27102	Accellion / FTA	Accellion FTA OS Command Injection Vulnerability	2021-11-03	3.7%
CVE-2021-27103	Accellion / FTA	Accellion FTA Server-Side Request Forgery (SSRF) Vulnerability	2021-11-03	11.4%
CVE-2021-27104	Accellion / FTA	Accellion FTA OS Command Injection Vulnerability	2021-11-03	56.7%
CVE-2021-27561	Yealink / Device Management	Yealink Device Management Server-Side Request Forgery (SSRF) Vulnerability	2021-11-03	82.5%
CVE-2021-27562	Arm / Trusted Firmware	Arm Trusted Firmware Out-of-Bounds Write Vulnerability	2021-11-03	3.1%
CVE-2021-28310	Microsoft / Win32k	Microsoft Win32k Privilege Escalation Vulnerability	2021-11-03	8.3%
CVE-2021-28550	Adobe / Acrobat and Reader	Adobe Acrobat and Reader Use-After-Free Vulnerability	2021-11-03	52.0%
CVE-2021-28663	Arm / Mali Graphics Processing Unit (GPU)	Arm Mali Graphics Processing Unit (GPU) Use-After-Free Vulnerability	2021-11-03	12.1%
CVE-2021-28664	Arm / Mali Graphics Processing Unit (GPU)	Arm Mali Graphics Processing Unit (GPU) Unspecified Vulnerability	2021-11-03	5.5%
CVE-2021-30116	Kaseya / Virtual System/Server Administrator (VSA)	Kaseya Virtual System/Server Administrator (VSA) Information Disclosure Vulne…	2021-11-03	83.2%
CVE-2021-30551	Google / Chromium V8	Google Chromium V8 Type Confusion Vulnerability	2021-11-03	64.7%
CVE-2021-30554	Google / Chromium WebGL	Google Chromium WebGL Use-After-Free Vulnerability	2021-11-03	7.4%
CVE-2021-30563	Google / Chromium V8	Google Chromium V8 Type Confusion Vulnerability	2021-11-03	8.9%
CVE-2021-30632	Google / Chromium V8	Google Chromium V8 Out-of-Bounds Write Vulnerability	2021-11-03	64.5%
CVE-2021-30633	Google / Chromium Indexed DB API	Google Chromium Indexed DB API Use-After-Free Vulnerability	2021-11-03	32.7%
CVE-2021-30657	Apple / macOS	Apple macOS Unspecified Vulnerability	2021-11-03	68.5%
CVE-2021-30661	Apple / Multiple Products	Apple Multiple Products WebKit Storage Use-After-Free Vulnerability	2021-11-03	4.3%
CVE-2021-30663	Apple / Multiple Products	Apple Multiple Products WebKit Integer Overflow Vulnerability	2021-11-03	3.5%
CVE-2021-30665	Apple / Multiple Products	Apple Multiple Products WebKit Memory Corruption Vulnerability	2021-11-03	3.5%
CVE-2021-30666	Apple / iOS	Apple iOS WebKit Buffer Overflow Vulnerability	2021-11-03	2.8%
CVE-2021-30713	Apple / macOS	Apple macOS Unspecified Vulnerability	2021-11-03	6.6%
CVE-2021-30761	Apple / iOS	Apple iOS WebKit Memory Corruption Vulnerability	2021-11-03	10.6%
CVE-2021-30762	Apple / iOS	Apple iOS WebKit Use-After-Free Vulnerability	2021-11-03	11.1%
CVE-2021-30807	Apple / Multiple Products	Apple Multiple Products Memory Corruption Vulnerability	2021-11-03	28.8%
CVE-2021-30858	Apple / iOS, iPadOS, and macOS	Apple iOS, iPadOS, macOS Use-After-Free Vulnerability	2021-11-03	13.5%
CVE-2021-30860	Apple / Multiple Products	Apple Multiple Products Integer Overflow Vulnerability	2021-11-03	76.0%
CVE-2021-30869	Apple / iOS, iPadOS, and macOS	Apple iOS, iPadOS, and macOS Type Confusion Vulnerability	2021-11-03	4.2%
CVE-2021-31199	Microsoft / Enhanced Cryptographic Provider	Microsoft Enhanced Cryptographic Provider Privilege Escalation Vulnerability	2021-11-03	3.0%
CVE-2021-31201	Microsoft / Enhanced Cryptographic Provider	Microsoft Enhanced Cryptographic Provider Privilege Escalation Vulnerability	2021-11-03	2.6%
CVE-2021-31207	Microsoft / Exchange Server	Microsoft Exchange Server Security Feature Bypass Vulnerability	2021-11-03	99.8%
CVE-2021-31755	Tenda / AC11 Router	Tenda AC11 Router Stack Buffer Overflow Vulnerability	2021-11-03	85.8%
CVE-2021-31955	Microsoft / Windows	Microsoft Windows Kernel Information Disclosure Vulnerability	2021-11-03	80.3%
CVE-2021-31956	Microsoft / Windows	Microsoft Windows NTFS Privilege Escalation Vulnerability	2021-11-03	20.3%
CVE-2021-31979	Microsoft / Windows	Microsoft Windows Kernel Privilege Escalation Vulnerability	2021-11-03	2.6%
CVE-2021-33739	Microsoft / Windows	Microsoft Desktop Window Manager (DWM) Core Library Privilege Escalation Vuln…	2021-11-03	6.6%
CVE-2021-33742	Microsoft / Windows	Microsoft Windows MSHTML Platform Remote Code Execution Vulnerability	2021-11-03	59.1%
CVE-2021-33771	Microsoft / Windows	Microsoft Windows Kernel Privilege Escalation Vulnerability	2021-11-03	6.2%
CVE-2021-34448	Microsoft / Windows	Microsoft Windows Scripting Engine Memory Corruption Vulnerability	2021-11-03	26.7%
CVE-2021-34473	Microsoft / Exchange Server	Microsoft Exchange Server Remote Code Execution Vulnerability	2021-11-03	100.0%
CVE-2021-34523	Microsoft / Exchange Server	Microsoft Exchange Server Privilege Escalation Vulnerability	2021-11-03	100.0%
CVE-2021-34527	Microsoft / Windows	Microsoft Windows Print Spooler Remote Code Execution Vulnerability	2021-11-03	99.8%
CVE-2021-35211	SolarWinds / Serv-U	SolarWinds Serv-U Remote Code Execution Vulnerability	2021-11-03	91.2%
CVE-2021-35395	Realtek / AP-Router SDK	Realtek AP-Router SDK Buffer Overflow Vulnerability	2021-11-03	98.1%
CVE-2021-35464	ForgeRock / Access Management (AM)	ForgeRock Access Management (AM) Core Server Remote Code Execution Vulnerability	2021-11-03	100.0%

Sourced from CISA Known Exploited Vulnerabilities — current weekly refresh. EPSS scores from FIRST.org via epss.cyentia.com. Curated by Adam Lundqvist, Founder at SQUR.