CISAKevBot
For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild: the Known Exploited Vulnerability (KEV) catalog. CISA strongly recommends all organizations review and monitor the KEV catalog and prioritize remediation of the listed vulnerabilities to reduce the likelihood of compromise by known threat actors.
Fediverse name: Text copied!
Fediverse URL: Text copied!
Feed URL: https://rud.is/cisa-kev.rssWebsite: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Refreshed at: 12/30/2025, 3:05:14 AM
Entries
- 2025-04-07: [CVE-2025-31161] CrushFTP Authentication Bypass Vulnerability
Posted at: 4/7/2025, 10:24:00 PM - 2025-04-04: [CVE-2025-22457] Ivanti Connect Secure, Policy Secure and ZTA Gateways Stack-Based Buffer Overflow Vulnerability
Posted at: 4/4/2025, 6:23:00 PM - 2025-04-01: [CVE-2025-24813] Apache Tomcat Path Equivalence Vulnerability
Posted at: 4/1/2025, 9:15:08 PM - 2025-03-31: [CVE-2024-20439] Cisco Smart Licensing Utility Static Credential Vulnerability
Posted at: 3/31/2025, 10:13:03 PM - 2025-03-27: [CVE-2025-2783] Google Chromium Mojo Sandbox Escape Vulnerability
Posted at: 3/27/2025, 8:24:03 PM - 2025-03-26: [CVE-2019-9875] Sitecore CMS and Experience Platform (XP) Deserialization Vulnerability
Posted at: 3/26/2025, 9:21:02 PM - 2025-03-26: [CVE-2019-9874] Sitecore CMS and Experience Platform (XP) Deserialization Vulnerability
Posted at: 3/26/2025, 9:21:02 PM - 2025-03-24: [CVE-2025-30154] reviewdog/action-setup GitHub Action Embedded Malicious Code Vulnerability
Posted at: 3/24/2025, 7:31:04 PM - 2025-03-19: [CVE-2017-12637] SAP NetWeaver Directory Traversal Vulnerability
Posted at: 3/19/2025, 8:03:01 PM - 2025-03-19: [CVE-2024-48248] NAKIVO Backup and Replication Absolute Path Traversal Vulnerability
Posted at: 3/19/2025, 8:03:01 PM