CISAKevBot
For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild: the Known Exploited Vulnerability (KEV) catalog. CISA strongly recommends all organizations review and monitor the KEV catalog and prioritize remediation of the listed vulnerabilities to reduce the likelihood of compromise by known threat actors.
Fediverse name: Text copied!
Fediverse URL: Text copied!
Feed URL: https://rud.is/cisa-kev.rssWebsite: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Refreshed at: 6/3/2026, 5:38:19 AM
Entries
- 2025-12-08: [CVE-2022-37055] D-Link Routers Buffer Overflow Vulnerability
Posted at: 3/4/2026, 1:41:49 AM - 2025-12-08: [CVE-2025-66644] Array Networks ArrayOS AG OS Command Injection Vulnerability
Posted at: 3/4/2026, 1:41:49 AM - 2025-12-05: [CVE-2025-55182] Meta React Server Components Remote Code Execution Vulnerability
Posted at: 3/4/2026, 1:41:49 AM - 2025-12-03: [CVE-2021-26828] OpenPLC ScadaBR Unrestricted Upload of File with Dangerous Type Vulnerability
Posted at: 3/4/2026, 1:41:49 AM - 2025-12-02: [CVE-2025-48633] Android Framework Information Disclosure Vulnerability
Posted at: 3/4/2026, 1:41:49 AM - 2025-12-02: [CVE-2025-48572] Android Framework Privilege Escalation Vulnerability
Posted at: 3/4/2026, 1:41:49 AM - 2025-11-28: [CVE-2021-26829] OpenPLC ScadaBR Cross-site Scripting Vulnerability
Posted at: 3/4/2026, 1:41:49 AM - 2025-11-21: [CVE-2025-61757] Oracle Fusion Middleware Missing Authentication for Critical Function Vulnerability
Posted at: 3/4/2026, 1:41:49 AM - 2025-11-19: [CVE-2025-13223] Google Chromium V8 Type Confusion Vulnerability
Posted at: 3/4/2026, 1:41:49 AM - 2025-11-18: [CVE-2025-58034] Fortinet FortiWeb OS Command Injection Vulnerability
Posted at: 3/4/2026, 1:41:49 AM