CISAKevBot
For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild: the Known Exploited Vulnerability (KEV) catalog. CISA strongly recommends all organizations review and monitor the KEV catalog and prioritize remediation of the listed vulnerabilities to reduce the likelihood of compromise by known threat actors.
Fediverse name: Text copied!
Fediverse URL: Text copied!
Feed URL: https://rud.is/cisa-kev.rssWebsite: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Refreshed at: 12/29/2025, 4:13:38 AM
Entries
- 2025-10-20: [CVE-2025-33073] Microsoft Windows SMB Client Improper Access Control Vulnerability
Posted at: 10/20/2025, 4:19:06 PM - 2025-10-20: [CVE-2025-61884] Oracle E-Business Suite Server-Side Request Forgery (SSRF) Vulnerability
Posted at: 10/20/2025, 4:19:06 PM - 2025-10-15: [CVE-2025-54253] Adobe Experience Manager Forms Code Execution Vulnerability
Posted at: 10/15/2025, 9:21:05 PM - 2025-10-14: [CVE-2025-47827] IGEL OS Use of a Key Past its Expiration Date Vulnerability
Posted at: 10/14/2025, 5:36:10 PM - 2025-10-14: [CVE-2025-24990] Microsoft Windows Untrusted Pointer Dereference Vulnerability
Posted at: 10/14/2025, 5:36:10 PM - 2025-10-14: [CVE-2025-59230] Microsoft Windows Improper Access Control Vulnerability
Posted at: 10/14/2025, 5:36:10 PM - 2025-10-14: [CVE-2025-6264] Rapid7 Velociraptor Incorrect Default Permissions Vulnerability
Posted at: 10/14/2025, 5:36:10 PM - 2025-10-14: [CVE-2016-7836] SKYSEA Client View Improper Authentication Vulnerability
Posted at: 10/14/2025, 5:36:10 PM - 2025-10-09: [CVE-2021-43798] Grafana Path Traversal Vulnerability
Posted at: 10/9/2025, 6:48:02 PM - 2025-10-07: [CVE-2025-27915] Synacor Zimbra Collaboration Suite (ZCS) Cross-site Scripting Vulnerability
Posted at: 10/7/2025, 7:16:11 PM