CISAKevBot
For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild: the Known Exploited Vulnerability (KEV) catalog. CISA strongly recommends all organizations review and monitor the KEV catalog and prioritize remediation of the listed vulnerabilities to reduce the likelihood of compromise by known threat actors.
Fediverse name: Text copied!
Fediverse URL: Text copied!
Feed URL: https://rud.is/cisa-kev.rssWebsite: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Refreshed at: 6/2/2026, 5:09:17 PM
Entries
- 2026-05-20: [CVE-2009-1537] Microsoft DirectX NULL Byte Overwrite Vulnerability
Posted at: 5/20/2026, 6:18:36 PM - 2026-05-20: [CVE-2009-3459] Adobe Acrobat and Reader Heap-Based Buffer Overflow Vulnerability
Posted at: 5/20/2026, 6:18:36 PM - 2026-05-20: [CVE-2010-0249] Microsoft Internet Explorer Use-After-Free Vulnerability
Posted at: 5/20/2026, 6:18:36 PM - 2026-05-20: [CVE-2010-0806] Microsoft Internet Explorer Use-After-Free Vulnerability
Posted at: 5/20/2026, 6:18:36 PM - 2026-05-20: [CVE-2026-41091] Microsoft Defender Link Following Vulnerability
Posted at: 5/20/2026, 6:18:36 PM - 2026-05-20: [CVE-2026-45498] Microsoft Defender Denial of Service Vulnerability
Posted at: 5/20/2026, 6:18:36 PM - 2026-05-15: [CVE-2026-42897] Microsoft Exchange Server Cross-Site Scripting Vulnerability
Posted at: 5/15/2026, 5:32:18 PM - 2026-05-14: [CVE-2026-20182] Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability
Posted at: 5/14/2026, 6:21:06 PM - 2026-05-08: [CVE-2026-42208] BerriAI LiteLLM SQL Injection Vulnerability
Posted at: 5/8/2026, 6:01:47 PM - 2026-05-07: [CVE-2026-6973] Ivanti Endpoint Manager Mobile (EPMM) Improper Input Validation Vulnerability
Posted at: 5/7/2026, 5:08:45 PM