1,619 totalEPSS avg 51.6%

KEVKnown Exploited Vulnerabilities

CISA’s actively-exploited catalogue · refreshed weekly · authored by Adam Lundqvist

Showing 1,619 of 1,619 · page 7 of 33

CVEVendor / ProductTitleKEV addedEPSS
CVE-2024-53150Linux / KernelLinux Kernel Out-of-Bounds Read Vulnerability2025-04-09
1.3%
CVE-2024-53197Linux / KernelLinux Kernel Out-of-Bounds Access Vulnerability2025-04-09
3.6%
CVE-2025-29824Microsoft / WindowsMicrosoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnera…2025-04-08
18.0%
CVE-2025-30406Gladinet / CentreStackGladinet CentreStack and Triofox Use of Hard-coded Cryptographic Key Vulnerab…2025-04-08
92.3%
CVE-2025-31161CrushFTP / CrushFTPCrushFTP Authentication Bypass Vulnerability2025-04-07
100.0%
CVE-2025-22457Ivanti / Connect Secure, Policy Secure, and ZTA GatewaysIvanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Ove…2025-04-04
100.0%
CVE-2025-24813Apache / TomcatApache Tomcat Path Equivalence Vulnerability2025-04-01
99.9%
CVE-2024-20439Cisco / Smart Licensing UtilityCisco Smart Licensing Utility Static Credential Vulnerability2025-03-31
92.0%
CVE-2025-2783Google / Chromium MojoGoogle Chromium Mojo Sandbox Escape Vulnerability2025-03-27
8.6%
CVE-2019-9874Sitecore / CMS and Experience Platform (XP)Sitecore CMS and Experience Platform (XP) Deserialization Vulnerability2025-03-26
83.9%
CVE-2019-9875Sitecore / CMS and Experience Platform (XP)Sitecore CMS and Experience Platform (XP) Deserialization Vulnerability2025-03-26
14.2%
CVE-2025-30154reviewdog / action-setup GitHub Actionreviewdog/action-setup GitHub Action Embedded Malicious Code Vulnerability2025-03-24
2.2%
CVE-2017-12637SAP / NetWeaverSAP NetWeaver Directory Traversal Vulnerability2025-03-19
94.6%
CVE-2024-48248NAKIVO / Backup and ReplicationNAKIVO Backup and Replication Absolute Path Traversal Vulnerability2025-03-19
94.0%
CVE-2025-1316Edimax / IC-7100 IP CameraEdimax IC-7100 IP Camera OS Command Injection Vulnerability2025-03-19
72.3%
CVE-2025-24472Fortinet / FortiOS and FortiProxyFortinet FortiOS and FortiProxy Authentication Bypass Vulnerability2025-03-18
3.0%
CVE-2025-30066tj-actions / changed-files GitHub Actiontj-actions/changed-files GitHub Action Embedded Malicious Code Vulnerability2025-03-18
44.7%
CVE-2025-21590Juniper / Junos OSJuniper Junos OS Improper Isolation or Compartmentalization Vulnerability2025-03-13
1.7%
CVE-2025-24201Apple / Multiple ProductsApple Multiple Products WebKit Out-of-Bounds Write Vulnerability2025-03-13
4.2%
CVE-2025-24983Microsoft / WindowsMicrosoft Windows Win32k Use-After-Free Vulnerability2025-03-11
1.3%
CVE-2025-24984Microsoft / WindowsMicrosoft Windows NTFS Information Disclosure Vulnerability2025-03-11
1.8%
CVE-2025-24985Microsoft / WindowsMicrosoft Windows Fast FAT File System Driver Integer Overflow Vulnerability2025-03-11
3.7%
CVE-2025-24991Microsoft / WindowsMicrosoft Windows NTFS Out-Of-Bounds Read Vulnerability2025-03-11
1.9%
CVE-2025-24993Microsoft / WindowsMicrosoft Windows NTFS Heap-Based Buffer Overflow Vulnerability2025-03-11
2.1%
CVE-2025-26633Microsoft / WindowsMicrosoft Windows Management Console (MMC) Improper Neutralization Vulnerability2025-03-11
31.9%
CVE-2024-13159Ivanti / Endpoint Manager (EPM)Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability2025-03-10
99.8%
CVE-2024-13160Ivanti / Endpoint Manager (EPM)Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability2025-03-10
89.7%
CVE-2024-13161Ivanti / Endpoint Manager (EPM)Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability2025-03-10
88.5%
CVE-2024-57968Advantive / VeraCoreAdvantive VeraCore Unrestricted File Upload Vulnerability2025-03-10
30.3%
CVE-2025-25181Advantive / VeraCore Advantive VeraCore SQL Injection Vulnerability2025-03-10
50.4%
CVE-2024-50302Linux / KernelLinux Kernel Use of Uninitialized Resource Vulnerability2025-03-04
0.8%
CVE-2025-22224VMware / ESXi and WorkstationVMware ESXi and Workstation TOCTOU Race Condition Vulnerability2025-03-04
1.5%
CVE-2025-22225VMware / ESXiVMware ESXi Arbitrary Write Vulnerability2025-03-04
1.0%
CVE-2025-22226VMware / ESXi, Workstation, and FusionVMware ESXi, Workstation, and Fusion Information Disclosure Vulnerability2025-03-04
1.7%
CVE-2018-8639Microsoft / WindowsMicrosoft Windows Win32k Improper Resource Shutdown or Release Vulnerability2025-03-03
22.3%
CVE-2022-43769Hitachi Vantara / Pentaho Business Analytics (BA) ServerHitachi Vantara Pentaho BA Server Special Element Injection Vulnerability2025-03-03
97.7%
CVE-2022-43939Hitachi Vantara / Pentaho Business Analytics (BA) ServerHitachi Vantara Pentaho BA Server Authorization Bypass Vulnerability2025-03-03
92.3%
CVE-2023-20118Cisco / Small Business RV Series RoutersCisco Small Business RV Series Routers Command Injection Vulnerability2025-03-03
53.8%
CVE-2024-4885Progress / WhatsUp GoldProgress WhatsUp Gold Path Traversal Vulnerability2025-03-03
99.3%
CVE-2023-34192Synacor / Zimbra Collaboration Suite (ZCS)Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerabi…2025-02-25
77.3%
CVE-2024-49035Microsoft / Partner CenterMicrosoft Partner Center Improper Access Control Vulnerability2025-02-25
1.3%
CVE-2017-3066Adobe / ColdFusionAdobe ColdFusion Deserialization Vulnerability2025-02-24
90.6%
CVE-2024-20953Oracle / Agile Product Lifecycle Management (PLM)Oracle Agile Product Lifecycle Management (PLM) Deserialization Vulnerability2025-02-24
3.4%
CVE-2025-24989Microsoft / Power PagesMicrosoft Power Pages Improper Access Control Vulnerability2025-02-21
1.7%
CVE-2025-0111Palo Alto Networks / PAN-OSPalo Alto Networks PAN-OS File Read Vulnerability2025-02-20
1.9%
CVE-2025-23209Craft CMS / Craft CMSCraft CMS Code Injection Vulnerability2025-02-20
4.1%
CVE-2024-53704SonicWall / SonicOSSonicWall SonicOS SSLVPN Improper Authentication Vulnerability2025-02-18
95.1%
CVE-2025-0108Palo Alto Networks / PAN-OSPalo Alto Networks PAN-OS Authentication Bypass Vulnerability2025-02-18
98.3%
CVE-2024-57727SimpleHelp / SimpleHelpSimpleHelp Path Traversal Vulnerability2025-02-13
95.1%
CVE-2024-41710Mitel / SIP PhonesMitel SIP Phones Argument Injection Vulnerability2025-02-12
41.2%
Sourced from CISA Known Exploited Vulnerabilities — current weekly refresh. EPSS scores from FIRST.org via epss.cyentia.com. Curated by Adam Lundqvist, Founder at SQUR.