CVE DATABASE · CISA KEV
Known Exploited
Vulnerabilities.
Every CVE in CISA’s KEV catalog — 1602 vulnerabilities confirmed exploited in the wild. The authoritative “patch this first” list. Search any one with our CVE Lookup or KEV search tool.
CVE-2019-13608
added 2021-11-03
RANSOMWARE
Citrix StoreFront Server XML External Entity (XXE) Processing Vulnerability
Citrix StoreFront Server
CVE-2020-8193
added 2021-11-03
Citrix ADC, Gateway, and SD-WAN WANOP Appliance Authorization Bypass Vulnerability
Citrix Application Delivery Controller (ADC), Gateway, and SD-WAN WANOP Appliance
CVE-2020-8195
added 2021-11-03
Citrix ADC, Gateway, and SD-WAN WANOP Appliance Information Disclosure Vulnerability
Citrix Application Delivery Controller (ADC), Gateway, and SD-WAN WANOP Appliance
CVE-2020-8196
added 2021-11-03
Citrix ADC, Gateway, and SD-WAN WANOP Appliance Information Disclosure Vulnerability
Citrix Application Delivery Controller (ADC), Gateway, and SD-WAN WANOP Appliance
CVE-2019-19781
added 2021-11-03
RANSOMWARE
Citrix ADC, Gateway, and SD-WAN WANOP Appliance Code Execution Vulnerability
Citrix Application Delivery Controller (ADC), Gateway, and SD-WAN WANOP Appliance
CVE-2019-11634
added 2021-11-03
RANSOMWARE
Citrix Workspace Application and Receiver for Windows Remote Code Execution Vulnerability
Citrix Workspace Application and Receiver for Windows
CVE-2020-29557
added 2021-11-03
D-Link DIR-825 R1 Devices Buffer Overflow Vulnerability
D-Link DIR-825 R1 Devices
CVE-2020-25506
added 2021-11-03
D-Link DNS-320 Device Command Injection Vulnerability
D-Link DNS-320 Device
CVE-2018-15811
added 2021-11-03
DotNetNuke (DNN) Inadequate Encryption Strength Vulnerability
DotNetNuke (DNN) DotNetNuke (DNN)
CVE-2018-18325
added 2021-11-03
DotNetNuke (DNN) Inadequate Encryption Strength Vulnerability
DotNetNuke (DNN) DotNetNuke (DNN)
CVE-2017-9822
added 2021-11-03
RANSOMWARE
DotNetNuke (DNN) Remote Code Execution Vulnerability
DotNetNuke (DNN) DotNetNuke (DNN)
CVE-2019-15752
added 2021-11-03
Docker Desktop Community Edition Privilege Escalation Vulnerability
Docker Desktop Community Edition
CVE-2020-8515
added 2021-11-03
Multiple DrayTek Vigor Routers Web Management Page Vulnerability
DrayTek Multiple Vigor Routers
CVE-2018-7600
added 2021-11-03
RANSOMWARE
Drupal Core Remote Code Execution Vulnerability
Drupal Drupal Core
CVE-2021-22205
added 2021-11-03
RANSOMWARE
GitLab Community and Enterprise Editions Remote Code Execution Vulnerability
GitLab Community and Enterprise Editions
CVE-2018-6789
added 2021-11-03
RANSOMWARE
Exim Buffer Overflow Vulnerability
Exim Exim
CVE-2020-8657
added 2021-11-03
EyesOfNetwork Use of Hard-Coded Credentials Vulnerability
EyesOfNetwork EyesOfNetwork
CVE-2020-8655
added 2021-11-03
EyesOfNetwork Improper Privilege Management Vulnerability
EyesOfNetwork EyesOfNetwork
CVE-2020-5902
added 2021-11-03
RANSOMWARE
F5 BIG-IP Traffic Management User Interface (TMUI) Remote Code Execution Vulnerability
F5 BIG-IP
CVE-2021-22986
added 2021-11-03
RANSOMWARE
F5 BIG-IP and BIG-IQ Centralized Management iControl REST Remote Code Execution Vulnerability
F5 BIG-IP and BIG-IQ Centralized Management
CVE-2021-35464
added 2021-11-03
RANSOMWARE
ForgeRock Access Management (AM) Core Server Remote Code Execution Vulnerability
ForgeRock Access Management (AM)
CVE-2019-5591
added 2021-11-03
Fortinet FortiOS Default Configuration Vulnerability
Fortinet FortiOS
CVE-2020-12812
added 2021-11-03
RANSOMWARE
Fortinet FortiOS SSL VPN Improper Authentication Vulnerability
Fortinet FortiOS
CVE-2018-13379
added 2021-11-03
RANSOMWARE
Fortinet FortiOS SSL VPN Path Traversal Vulnerability
Fortinet FortiOS
CVE-2020-16010
added 2021-11-03
Google Chrome for Android UI Heap Buffer Overflow Vulnerability
Google Chrome for Android UI
CVE-2020-15999
added 2021-11-03
Google Chrome FreeType Heap Buffer Overflow Vulnerability
Google Chrome FreeType
CVE-2021-21166
added 2021-11-03
Google Chromium Race Condition Vulnerability
Google Chromium
CVE-2020-16017
added 2021-11-03
Google Chrome Use-After-Free Vulnerability
Google Chrome
CVE-2021-37976
added 2021-11-03
Google Chromium Information Disclosure Vulnerability
Google Chromium
CVE-2020-16009
added 2021-11-03
Google Chromium V8 Type Confusion Vulnerability
Google Chromium V8
CVE-2021-30632
added 2021-11-03
Google Chromium V8 Out-of-Bounds Write Vulnerability
Google Chromium V8
CVE-2020-16013
added 2021-11-03
Google Chromium V8 Incorrect Implementation Vulnerabililty
Google Chromium V8
CVE-2021-30633
added 2021-11-03
Google Chromium Indexed DB API Use-After-Free Vulnerability
Google Chromium Indexed DB API
CVE-2021-21148
added 2021-11-03
Google Chromium V8 Heap Buffer Overflow Vulnerability
Google Chromium V8
CVE-2021-37973
added 2021-11-03
Google Chromium Portals Use-After-Free Vulnerability
Google Chromium Portals
CVE-2021-30551
added 2021-11-03
Google Chromium V8 Type Confusion Vulnerability
Google Chromium V8
CVE-2021-37975
added 2021-11-03
Google Chromium V8 Use-After-Free Vulnerability
Google Chromium V8
CVE-2020-6418
added 2021-11-03
Google Chromium V8 Type Confusion Vulnerability
Google Chromium V8
CVE-2021-30554
added 2021-11-03
Google Chromium WebGL Use-After-Free Vulnerability
Google Chromium WebGL
CVE-2021-21206
added 2021-11-03
Google Chromium Blink Use-After-Free Vulnerability
Google Chromium Blink
CVE-2021-38000
added 2021-11-03
Google Chromium Intents Improper Input Validation Vulnerability
Google Chromium Intents
CVE-2021-38003
added 2021-11-03
Google Chromium V8 Memory Corruption Vulnerability
Google Chromium V8
CVE-2021-21224
added 2021-11-03
Google Chromium V8 Type Confusion Vulnerability
Google Chromium V8
CVE-2021-21193
added 2021-11-03
Google Chromium Blink Use-After-Free Vulnerability
Google Chromium Blink
CVE-2021-21220
added 2021-11-03
Google Chromium V8 Improper Input Validation Vulnerability
Google Chromium V8
CVE-2021-30563
added 2021-11-03
Google Chromium V8 Type Confusion Vulnerability
Google Chromium V8
CVE-2020-4430
added 2021-11-03
IBM Data Risk Manager Directory Traversal Vulnerability
IBM Data Risk Manager
CVE-2020-4427
added 2021-11-03
IBM Data Risk Manager Security Bypass Vulnerability
IBM Data Risk Manager
CVE-2020-4428
added 2021-11-03
IBM Data Risk Manager Remote Code Execution Vulnerability
IBM Data Risk Manager
CVE-2019-4716
added 2021-11-03
IBM Planning Analytics Remote Code Execution Vulnerability
IBM Planning Analytics
CVE-2016-3715
added 2021-11-03
ImageMagick Arbitrary File Deletion Vulnerability
ImageMagick ImageMagick
CVE-2016-3718
added 2021-11-03
ImageMagick Server-Side Request Forgery (SSRF) Vulnerability
ImageMagick ImageMagick
CVE-2020-15505
added 2021-11-03
Ivanti MobileIron Multiple Products Remote Code Execution Vulnerability
Ivanti MobileIron Multiple Products
CVE-2021-30116
added 2021-11-03
RANSOMWARE
Kaseya Virtual System/Server Administrator (VSA) Information Disclosure Vulnerability
Kaseya Virtual System/Server Administrator (VSA)
CVE-2020-7961
added 2021-11-03
Liferay Portal Deserialization of Untrusted Data Vulnerability
Liferay Liferay Portal
CVE-2021-23874
added 2021-11-03
McAfee Total Protection (MTP) Improper Privilege Management Vulnerability
McAfee McAfee Total Protection (MTP)
CVE-2021-22506
added 2021-11-03
Micro Focus Access Manager Information Leakage Vulnerability
Micro Focus Micro Focus Access Manager
CVE-2021-22502
added 2021-11-03
Micro Focus Operation Bridge Report (OBR) Remote Code Execution Vulnerability
Micro Focus Operation Bridge Reporter (OBR)
CVE-2014-1812
added 2021-11-03
RANSOMWARE
Microsoft Windows Group Policy Preferences Password Privilege Escalation Vulnerability
Microsoft Windows
CVE-2021-38647
added 2021-11-03
RANSOMWARE
Microsoft Open Management Infrastructure (OMI) Remote Code Execution Vulnerability
Microsoft Open Management Infrastructure (OMI)