LIVE NEWSROOM · --:-- · May 24, 2026
A LIBRARY FOR SECURITY RESEARCHERS

CVE DATABASE · CISA KEV

Known Exploited
Vulnerabilities.

Every CVE in CISA’s KEV catalog — 1602 vulnerabilities confirmed exploited in the wild. The authoritative “patch this first” list. Search any one with our CVE Lookup or KEV search tool.

CVE-2019-3929 added 2022-04-15
Crestron Multiple Products Command Injection Vulnerability
Crestron Multiple Products
CVE-2019-16057 added 2022-04-15 RANSOMWARE
D-Link DNS-320 Remote Code Execution Vulnerability
D-Link DNS-320 Storage Device
CVE-2018-7841 added 2022-04-15
Schneider Electric U.motion Builder SQL Injection Vulnerability
Schneider Electric U.motion Builder
CVE-2016-4523 added 2022-04-15
Trihedral VTScada (formerly VTS) Denial-of-Service Vulnerability
Trihedral VTScada (formerly VTS)
CVE-2014-0780 added 2022-04-15
InduSoft Web Studio NTWebServer Directory Traversal Vulnerability
InduSoft Web Studio
CVE-2010-5330 added 2022-04-15
Ubiquiti AirOS Command Injection Vulnerability
Ubiquiti AirOS
CVE-2007-3010 added 2022-04-15
Alcatel OmniPCX Enterprise Remote Code Execution Vulnerability
Alcatel OmniPCX Enterprise
CVE-2022-22954 added 2022-04-14 RANSOMWARE
VMware Workspace ONE Access and Identity Manager Server-Side Template Injection Vulnerability
VMware Workspace ONE Access and Identity Manager
CVE-2022-24521 added 2022-04-13 RANSOMWARE
Microsoft Windows CLFS Driver Privilege Escalation Vulnerability
Microsoft Windows
CVE-2018-7602 added 2022-04-13 RANSOMWARE
Drupal Core Remote Code Execution Vulnerability
Drupal Core
CVE-2018-20753 added 2022-04-13 RANSOMWARE
Kaseya VSA Remote Code Execution Vulnerability
Kaseya Virtual System/Server Administrator (VSA)
CVE-2015-5123 added 2022-04-13
Adobe Flash Player Use-After-Free Vulnerability
Adobe Flash Player
CVE-2015-5122 added 2022-04-13
Adobe Flash Player Use-After-Free Vulnerability
Adobe Flash Player
CVE-2015-3113 added 2022-04-13
Adobe Flash Player Heap-Based Buffer Overflow Vulnerability
Adobe Flash Player
CVE-2015-2502 added 2022-04-13
Microsoft Internet Explorer Memory Corruption Vulnerability
Microsoft Internet Explorer
CVE-2015-0313 added 2022-04-13
Adobe Flash Player Use-After-Free Vulnerability
Adobe Flash Player
CVE-2015-0311 added 2022-04-13
Adobe Flash Player Remote Code Execution Vulnerability
Adobe Flash Player
CVE-2014-9163 added 2022-04-13
Adobe Flash Player Stack-Based Buffer Overflow Vulnerability
Adobe Flash Player
CVE-2022-23176 added 2022-04-11
WatchGuard Firebox and XTM Privilege Escalation Vulnerability
WatchGuard Firebox and XTM
CVE-2021-42287 added 2022-04-11 RANSOMWARE
Microsoft Active Directory Domain Services Privilege Escalation Vulnerability
Microsoft Active Directory
CVE-2021-42278 added 2022-04-11 RANSOMWARE
Microsoft Active Directory Domain Services Privilege Escalation Vulnerability
Microsoft Active Directory
CVE-2021-39793 added 2022-04-11
Google Pixel Out-of-Bounds Write Vulnerability
Google Pixel
CVE-2021-27852 added 2022-04-11
Checkbox Survey Deserialization of Untrusted Data Vulnerability
Checkbox Checkbox Survey
CVE-2021-22600 added 2022-04-11
Linux Kernel Privilege Escalation Vulnerability
Linux Kernel
CVE-2020-2509 added 2022-04-11
QNAP Network-Attached Storage (NAS) Command Injection Vulnerability
QNAP QNAP Network-Attached Storage (NAS)
CVE-2017-11317 added 2022-04-11
Telerik UI for ASP.NET AJAX Unrestricted File Upload Vulnerability
Telerik User Interface (UI) for ASP.NET AJAX
CVE-2021-3156 added 2022-04-06
Sudo Heap-Based Buffer Overflow Vulnerability
Sudo Sudo
CVE-2021-31166 added 2022-04-06
Microsoft HTTP Protocol Stack Remote Code Execution Vulnerability
Microsoft HTTP Protocol Stack
CVE-2017-0148 added 2022-04-06 RANSOMWARE
Microsoft SMBv1 Server Remote Code Execution Vulnerability
Microsoft SMBv1 server
CVE-2022-22965 added 2022-04-04
Spring Framework JDK 9+ Remote Code Execution Vulnerability
VMware Spring Framework
CVE-2022-22675 added 2022-04-04
Apple macOS Out-of-Bounds Write Vulnerability
Apple macOS
CVE-2022-22674 added 2022-04-04
Apple macOS Out-of-Bounds Read Vulnerability
Apple macOS
CVE-2021-45382 added 2022-04-04
D-Link Multiple Routers Remote Code Execution Vulnerability
D-Link Multiple Routers
CVE-2022-26871 added 2022-03-31
Trend Micro Apex Central Arbitrary File Upload Vulnerability
Trend Micro Apex Central
CVE-2022-1040 added 2022-03-31
Sophos Firewall Authentication Bypass Vulnerability
Sophos Firewall
CVE-2021-34484 added 2022-03-31
Microsoft Windows User Profile Service Privilege Escalation Vulnerability
Microsoft Windows
CVE-2021-28799 added 2022-03-31 RANSOMWARE
QNAP NAS Improper Authorization Vulnerability
QNAP Network Attached Storage (NAS)
CVE-2021-21551 added 2022-03-31
Dell dbutil Driver Insufficient Access Control Vulnerability
Dell dbutil Driver
CVE-2018-10562 added 2022-03-31 RANSOMWARE
Dasan GPON Routers Command Injection Vulnerability
Dasan Gigabit Passive Optical Network (GPON) Routers
CVE-2018-10561 added 2022-03-31
Dasan GPON Routers Authentication Bypass Vulnerability
Dasan Gigabit Passive Optical Network (GPON) Routers
CVE-2022-1096 added 2022-03-28
Google Chromium V8 Type Confusion Vulnerability
Google Chromium V8
CVE-2022-0543 added 2022-03-28
Debian-specific Redis Server Lua Sandbox Escape Vulnerability
Redis Debian-specific Redis Servers
CVE-2021-38646 added 2022-03-28 RANSOMWARE
Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability
Microsoft Office
CVE-2021-34486 added 2022-03-28
Microsoft Windows Event Tracing Privilege Escalation Vulnerability
Microsoft Windows
CVE-2021-26085 added 2022-03-28 RANSOMWARE
Atlassian Confluence Server Pre-Authorization Arbitrary File Read Vulnerability
Atlassian Confluence Server
CVE-2021-20028 added 2022-03-28 RANSOMWARE
SonicWall Secure Remote Access (SRA) SQL Injection Vulnerability
SonicWall Secure Remote Access (SRA)
CVE-2019-7483 added 2022-03-28
SonicWall SMA100 Directory Traversal Vulnerability
SonicWall SMA100
CVE-2018-8440 added 2022-03-28 RANSOMWARE
Microsoft Windows Privilege Escalation Vulnerability
Microsoft Windows
CVE-2018-8406 added 2022-03-28 RANSOMWARE
Microsoft DirectX Graphics Kernel Privilege Escalation Vulnerability
Microsoft DirectX Graphics Kernel (DXGKRNL)
CVE-2018-8405 added 2022-03-28 RANSOMWARE
Microsoft DirectX Graphics Kernel Privilege Escalation Vulnerability
Microsoft DirectX Graphics Kernel (DXGKRNL)
CVE-2017-0213 added 2022-03-28 RANSOMWARE
Microsoft Windows Privilege Escalation Vulnerability
Microsoft Windows
CVE-2017-0059 added 2022-03-28
Microsoft Internet Explorer Information Disclosure Vulnerability
Microsoft Internet Explorer
CVE-2017-0037 added 2022-03-28
Microsoft Edge and Internet Explorer Type Confusion Vulnerability
Microsoft Edge and Internet Explorer
CVE-2016-7201 added 2022-03-28
Microsoft Edge Memory Corruption Vulnerability
Microsoft Edge
CVE-2016-7200 added 2022-03-28
Microsoft Edge Memory Corruption Vulnerability
Microsoft Edge
CVE-2016-0189 added 2022-03-28
Microsoft Internet Explorer Memory Corruption Vulnerability
Microsoft Internet Explorer
CVE-2016-0151 added 2022-03-28 RANSOMWARE
Microsoft Windows CSRSS Security Feature Bypass Vulnerability
Microsoft Client-Server Run-time Subsystem (CSRSS)
CVE-2016-0040 added 2022-03-28
Microsoft Windows Kernel Privilege Escalation Vulnerability
Microsoft Windows
CVE-2015-2426 added 2022-03-28
Microsoft Windows Adobe Type Manager Library Remote Code Execution Vulnerability
Microsoft Windows
CVE-2015-2419 added 2022-03-28
Microsoft Internet Explorer Memory Corruption Vulnerability
Microsoft Internet Explorer
← Prev Page 17 of 27 Next →
Scroll to Top