CISAKevBot
For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild: the Known Exploited Vulnerability (KEV) catalog. CISA strongly recommends all organizations review and monitor the KEV catalog and prioritize remediation of the listed vulnerabilities to reduce the likelihood of compromise by known threat actors.
Fediverse name: Text copied!
Fediverse URL: Text copied!
Feed URL: https://rud.is/cisa-kev.rssWebsite: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Refreshed at: 6/25/2026, 3:28:14 AM
Entries
- 2022-01-21: [CVE-2012-0391] Apache Struts 2 Improper Input Validation Vulnerability
Posted at: 12/24/2024, 8:21:07 PM - 2022-01-21: [CVE-2018-8453] Microsoft Win32k Privilege Escalation Vulnerability
Posted at: 12/24/2024, 8:21:07 PM - 2022-01-21: [CVE-2021-35247] SolarWinds Serv-U Improper Input Validation Vulnerability
Posted at: 12/24/2024, 8:21:07 PM - 2022-01-18: [CVE-2021-32648] October CMS Improper Authentication
Posted at: 12/24/2024, 8:21:07 PM - 2022-01-18: [CVE-2021-25296] Nagios XI OS Command Injection
Posted at: 12/24/2024, 8:21:07 PM - 2022-01-18: [CVE-2021-25297] Nagios XI OS Command Injection
Posted at: 12/24/2024, 8:21:07 PM - 2022-01-18: [CVE-2021-25298] Nagios XI OS Command Injection
Posted at: 12/24/2024, 8:21:07 PM - 2022-01-18: [CVE-2021-40870] Aviatrix Controller Unrestricted Upload of File
Posted at: 12/24/2024, 8:21:07 PM - 2022-01-18: [CVE-2021-33766] Microsoft Exchange Server Information Disclosure
Posted at: 12/24/2024, 8:21:07 PM - 2022-01-18: [CVE-2021-21975] VMware Server Side Request Forgery in vRealize Operations Manager API
Posted at: 12/24/2024, 8:21:07 PM