LIVE NEWSROOM · --:-- · May 24, 2026
A LIBRARY FOR SECURITY RESEARCHERS

CVE DATABASE · CISA KEV

Known Exploited
Vulnerabilities.

Every CVE in CISA’s KEV catalog — 1602 vulnerabilities confirmed exploited in the wild. The authoritative “patch this first” list. Search any one with our CVE Lookup or KEV search tool.

CVE-2023-41179 added 2023-09-21
Trend Micro Apex One and Worry-Free Business Security Remote Code Execution Vulnerability
Trend Micro Apex One and Worry-Free Business Security
CVE-2023-28434 added 2023-09-19
MinIO Security Feature Bypass Vulnerability
MinIO MinIO
CVE-2022-22265 added 2023-09-18
Samsung Mobile Devices Use-After-Free Vulnerability
Samsung Mobile Devices
CVE-2014-8361 added 2023-09-18
Realtek SDK Improper Input Validation Vulnerability
Realtek SDK
CVE-2017-6884 added 2023-09-18 RANSOMWARE
Zyxel EMG2926 Routers Command Injection Vulnerability
Zyxel EMG2926 Routers
CVE-2021-3129 added 2023-09-18 RANSOMWARE
Laravel Ignition File Upload Vulnerability
Laravel Ignition
CVE-2023-26369 added 2023-09-14
Adobe Acrobat and Reader Out-of-Bounds Write Vulnerability
Adobe Acrobat and Reader
CVE-2023-35674 added 2023-09-13
Android Framework Privilege Escalation Vulnerability
Android Framework
CVE-2023-20269 added 2023-09-13 RANSOMWARE
Cisco Adaptive Security Appliance and Firepower Threat Defense Unauthorized Access Vulnerability
Cisco Adaptive Security Appliance and Firepower Threat Defense
CVE-2023-4863 added 2023-09-13
Google Chromium WebP Heap-Based Buffer Overflow Vulnerability
Google Chromium WebP
CVE-2023-36761 added 2023-09-12
Microsoft Word Information Disclosure Vulnerability
Microsoft Word
CVE-2023-36802 added 2023-09-12
Microsoft Streaming Service Proxy Privilege Escalation Vulnerability
Microsoft Streaming Service Proxy
CVE-2023-41064 added 2023-09-11
Apple iOS, iPadOS, and macOS ImageIO Buffer Overflow Vulnerability
Apple iOS, iPadOS, and macOS
CVE-2023-41061 added 2023-09-11
Apple iOS, iPadOS, and watchOS Wallet Code Execution Vulnerability
Apple iOS, iPadOS, and watchOS
CVE-2023-33246 added 2023-09-06
Apache RocketMQ Command Execution Vulnerability
Apache RocketMQ
CVE-2023-38831 added 2023-08-24 RANSOMWARE
RARLAB WinRAR Code Execution Vulnerability
RARLAB WinRAR
CVE-2023-32315 added 2023-08-24
Ignite Realtime Openfire Path Traversal Vulnerability
Ignite Realtime Openfire
CVE-2023-38035 added 2023-08-22 RANSOMWARE
Ivanti Sentry Authentication Bypass Vulnerability
Ivanti Sentry
CVE-2023-27532 added 2023-08-22 RANSOMWARE
Veeam Backup & Replication Cloud Connect Missing Authentication for Critical Function Vulnerability
Veeam Backup & Replication
CVE-2023-26359 added 2023-08-21
Adobe ColdFusion Deserialization of Untrusted Data Vulnerability
Adobe ColdFusion
CVE-2023-24489 added 2023-08-16
Citrix Content Collaboration ShareFile Improper Access Control Vulnerability
Citrix Content Collaboration
CVE-2023-38180 added 2023-08-09
Microsoft .NET Core and Visual Studio Denial-of-Service Vulnerability
Microsoft .NET Core and Visual Studio
CVE-2017-18368 added 2023-08-07
Zyxel P660HN-T1A Routers Command Injection Vulnerability
Zyxel P660HN-T1A Routers
CVE-2023-35081 added 2023-07-31
Ivanti Endpoint Manager Mobile (EPMM) Path Traversal Vulnerability
Ivanti Endpoint Manager Mobile (EPMM)
CVE-2023-37580 added 2023-07-27
Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability
Synacor Zimbra Collaboration Suite (ZCS)
CVE-2023-38606 added 2023-07-26
Apple Multiple Products Kernel Unspecified Vulnerability
Apple Multiple Products
CVE-2023-35078 added 2023-07-25 RANSOMWARE
Ivanti Endpoint Manager Mobile Authentication Bypass Vulnerability
Ivanti Endpoint Manager Mobile (EPMM)
CVE-2023-29298 added 2023-07-20
Adobe ColdFusion Improper Access Control Vulnerability
Adobe ColdFusion
CVE-2023-38205 added 2023-07-20
Adobe ColdFusion Improper Access Control Vulnerability
Adobe ColdFusion
CVE-2023-3519 added 2023-07-19 RANSOMWARE
Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability
Citrix NetScaler ADC and NetScaler Gateway
CVE-2023-36884 added 2023-07-17 RANSOMWARE
Microsoft Windows Search Remote Code Execution Vulnerability
Microsoft Windows
CVE-2022-29303 added 2023-07-13
SolarView Compact Command Injection Vulnerability
SolarView Compact
CVE-2023-37450 added 2023-07-13
Apple Multiple Products WebKit Code Execution Vulnerability
Apple Multiple Products
CVE-2023-32046 added 2023-07-11
Microsoft Windows MSHTML Platform Privilege Escalation Vulnerability
Microsoft Windows
CVE-2023-32049 added 2023-07-11
Microsoft Windows Defender SmartScreen Security Feature Bypass Vulnerability
Microsoft Windows
CVE-2023-35311 added 2023-07-11
Microsoft Outlook Security Feature Bypass Vulnerability
Microsoft Outlook
CVE-2023-36874 added 2023-07-11
Microsoft Windows Error Reporting Service Privilege Escalation Vulnerability
Microsoft Windows
CVE-2022-31199 added 2023-07-11 RANSOMWARE
Netwrix Auditor Insecure Object Deserialization Vulnerability
Netwrix Auditor
CVE-2021-29256 added 2023-07-07
Arm Mali GPU Kernel Driver Use-After-Free Vulnerability
Arm Mali Graphics Processing Unit (GPU)
CVE-2019-17621 added 2023-06-29
D-Link DIR-859 Router Command Execution Vulnerability
D-Link DIR-859 Router
CVE-2019-20500 added 2023-06-29
D-Link DWL-2600AP Access Point Command Injection Vulnerability
D-Link DWL-2600AP Access Point
CVE-2021-25487 added 2023-06-29
Samsung Mobile Devices Out-of-Bounds Read Vulnerability
Samsung Mobile Devices
CVE-2021-25489 added 2023-06-29
Samsung Mobile Devices Improper Input Validation Vulnerability
Samsung Mobile Devices
CVE-2021-25394 added 2023-06-29
Samsung Mobile Devices Race Condition Vulnerability
Samsung Mobile Devices
CVE-2021-25395 added 2023-06-29
Samsung Mobile Devices Race Condition Vulnerability
Samsung Mobile Devices
CVE-2021-25371 added 2023-06-29
Samsung Mobile Devices Unspecified Vulnerability
Samsung Mobile Devices
CVE-2021-25372 added 2023-06-29
Samsung Mobile Devices Improper Boundary Check Vulnerability
Samsung Mobile Devices
CVE-2023-32434 added 2023-06-23
Apple Multiple Products Integer Overflow Vulnerability
Apple Multiple Products
CVE-2023-32435 added 2023-06-23
Apple Multiple Products WebKit Memory Corruption Vulnerability
Apple Multiple Products
CVE-2023-32439 added 2023-06-23
Apple Multiple Products WebKit Type Confusion Vulnerability
Apple Multiple Products
CVE-2023-20867 added 2023-06-23
VMware Tools Authentication Bypass Vulnerability
VMware Tools
CVE-2023-27992 added 2023-06-23
Zyxel Multiple NAS Devices Command Injection Vulnerability
Zyxel Multiple Network-Attached Storage (NAS) Devices
CVE-2023-20887 added 2023-06-22
Vmware Aria Operations for Networks Command Injection Vulnerability
VMware Aria Operations for Networks
CVE-2020-35730 added 2023-06-22
Roundcube Webmail Cross-Site Scripting (XSS) Vulnerability
Roundcube Roundcube Webmail
CVE-2020-12641 added 2023-06-22
Roundcube Webmail Remote Code Execution Vulnerability
Roundcube Roundcube Webmail
CVE-2021-44026 added 2023-06-22
Roundcube Webmail SQL Injection Vulnerability
Roundcube Roundcube Webmail
CVE-2016-9079 added 2023-06-22
Mozilla Firefox, Firefox ESR, and Thunderbird Use-After-Free Vulnerability
Mozilla Firefox, Firefox ESR, and Thunderbird
CVE-2016-0165 added 2023-06-22
Microsoft Win32k Privilege Escalation Vulnerability
Microsoft Win32k
CVE-2023-27997 added 2023-06-13 RANSOMWARE
Fortinet FortiOS and FortiProxy SSL-VPN Heap-Based Buffer Overflow Vulnerability
Fortinet FortiOS and FortiProxy SSL-VPN
CVE-2023-3079 added 2023-06-07
Google Chromium V8 Type Confusion Vulnerability
Google Chromium V8
← Prev Page 11 of 27 Next →
Scroll to Top