CISAKevBot
For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild: the Known Exploited Vulnerability (KEV) catalog. CISA strongly recommends all organizations review and monitor the KEV catalog and prioritize remediation of the listed vulnerabilities to reduce the likelihood of compromise by known threat actors.
Fediverse name: Text copied!
Fediverse URL: Text copied!
Feed URL: https://rud.is/cisa-kev.rssWebsite: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Refreshed at: 12/29/2025, 11:35:10 PM
Entries
- 2025-05-07: [CVE-2024-11120] GeoVision Devices OS Command Injection Vulnerability
Posted at: 5/7/2025, 8:14:04 PM - 2025-05-07: [CVE-2024-6047] GeoVision Devices OS Command Injection Vulnerability
Posted at: 5/7/2025, 8:14:04 PM - 2025-05-06: [CVE-2025-27363] FreeType Out-of-Bounds Write Vulnerability
Posted at: 5/6/2025, 8:05:03 PM - 2025-05-05: [CVE-2025-3248] Langflow Missing Authentication Vulnerability
Posted at: 5/5/2025, 8:27:14 PM - 2025-05-02: [CVE-2025-34028] Commvault Command Center Path Traversal Vulnerability
Posted at: 5/2/2025, 6:20:08 PM - 2025-05-02: [CVE-2024-58136] Yiiframework Yii Improper Protection of Alternate Path Vulnerability
Posted at: 5/2/2025, 6:20:08 PM - 2025-05-01: [CVE-2024-38475] Apache HTTP Server Improper Escaping of Output Vulnerability
Posted at: 5/1/2025, 6:55:04 PM - 2025-05-01: [CVE-2023-44221] SonicWall SMA100 Appliances OS Command Injection Vulnerability
Posted at: 5/1/2025, 6:55:04 PM - 2025-04-29: [CVE-2025-31324] SAP NetWeaver Unrestricted File Upload Vulnerability
Posted at: 4/29/2025, 7:58:01 PM - 2025-04-28: [CVE-2025-1976] Broadcom Brocade Fabric OS Code Injection Vulnerability
Posted at: 4/29/2025, 12:28:07 AM