CISAKevBot
For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild: the Known Exploited Vulnerability (KEV) catalog. CISA strongly recommends all organizations review and monitor the KEV catalog and prioritize remediation of the listed vulnerabilities to reduce the likelihood of compromise by known threat actors.
Fediverse name: Text copied!
Fediverse URL: Text copied!
Feed URL: https://rud.is/cisa-kev.rssWebsite: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Refreshed at: 12/29/2025, 6:19:10 PM
Entries
- 2025-06-10: [CVE-2025-33053] Web Distributed Authoring and Versioning (WebDAV) External Control of File Name or Path Vulnerability
Posted at: 6/10/2025, 6:50:01 PM - 2025-06-10: [CVE-2025-24016] Wazuh Server Deserialization of Untrusted Data Vulnerability
Posted at: 6/10/2025, 6:50:01 PM - 2025-06-09: [CVE-2024-42009] RoundCube Webmail Cross-Site Scripting Vulnerability
Posted at: 6/9/2025, 7:13:10 PM - 2025-06-09: [CVE-2025-32433] Erlang Erlang/OTP SSH Server Missing Authentication for Critical Function Vulnerability
Posted at: 6/9/2025, 7:13:10 PM - 2025-06-05: [CVE-2025-5419] Google Chromium V8 Out-of-Bounds Read and Write Vulnerability
Posted at: 6/5/2025, 8:49:03 PM - 2025-06-03: [CVE-2025-21479] Qualcomm Multiple Chipsets Incorrect Authorization Vulnerability
Posted at: 6/3/2025, 5:38:02 PM - 2025-06-03: [CVE-2025-21480] Qualcomm Multiple Chipsets Incorrect Authorization Vulnerability
Posted at: 6/3/2025, 5:38:02 PM - 2025-06-03: [CVE-2025-27038] Qualcomm Multiple Chipsets Use-After-Free Vulnerability
Posted at: 6/3/2025, 5:38:02 PM - 2025-06-02: [CVE-2021-32030] ASUS Routers Improper Authentication Vulnerability
Posted at: 6/2/2025, 5:59:04 PM - 2025-06-02: [CVE-2025-3935] ConnectWise ScreenConnect Improper Authentication Vulnerability
Posted at: 6/2/2025, 5:59:04 PM