CISAKevBot
For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild: the Known Exploited Vulnerability (KEV) catalog. CISA strongly recommends all organizations review and monitor the KEV catalog and prioritize remediation of the listed vulnerabilities to reduce the likelihood of compromise by known threat actors.
Fediverse name: Text copied!
Fediverse URL: Text copied!
Feed URL: https://rud.is/cisa-kev.rssWebsite: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Refreshed at: 12/30/2025, 9:58:42 AM
Entries
- 2025-02-20: [CVE-2025-0111] Palo Alto Networks PAN-OS File Read Vulnerability
Posted at: 2/20/2025, 3:44:11 PM - 2025-02-20: [CVE-2025-23209] Craft CMS Code Injection Vulnerability
Posted at: 2/20/2025, 3:44:11 PM - 2025-02-18: [CVE-2025-0108] Palo Alto PAN-OS Authentication Bypass Vulnerability
Posted at: 2/18/2025, 6:14:04 PM - 2025-02-18: [CVE-2024-53704] SonicWall SonicOS SSLVPN Improper Authentication Vulnerability
Posted at: 2/18/2025, 6:14:04 PM - 2025-02-13: [CVE-2024-57727] SimpleHelp Path Traversal Vulnerability
Posted at: 2/13/2025, 8:35:19 PM - 2025-02-12: [CVE-2025-24200] Apple iOS and iPadOS Incorrect Authorization Vulnerability
Posted at: 2/12/2025, 6:03:03 PM - 2025-02-12: [CVE-2024-41710] Mitel SIP Phones Argument Injection Vulnerability
Posted at: 2/12/2025, 6:03:03 PM - 2025-02-11: [CVE-2024-40891] Zyxel DSL CPE OS Command Injection Vulnerability
Posted at: 2/11/2025, 7:18:02 PM - 2025-02-11: [CVE-2024-40890] Zyxel DSL CPE OS Command Injection Vulnerability
Posted at: 2/11/2025, 7:18:02 PM - 2025-02-11: [CVE-2025-21418] Microsoft Windows Ancillary Function Driver for WinSock Heap-Based Buffer Overflow Vulnerability
Posted at: 2/11/2025, 7:18:02 PM