CISAKevBot
For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild: the Known Exploited Vulnerability (KEV) catalog. CISA strongly recommends all organizations review and monitor the KEV catalog and prioritize remediation of the listed vulnerabilities to reduce the likelihood of compromise by known threat actors.
Fediverse name: Text copied!
Fediverse URL: Text copied!
Feed URL: https://rud.is/cisa-kev.rssWebsite: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Refreshed at: 6/2/2026, 6:28:18 PM
Entries
- 2026-05-08: [CVE-2026-42208] BerriAI LiteLLM SQL Injection Vulnerability
Posted at: 5/8/2026, 6:01:47 PM - 2026-05-07: [CVE-2026-6973] Ivanti Endpoint Manager Mobile (EPMM) Improper Input Validation Vulnerability
Posted at: 5/7/2026, 5:08:45 PM - 2026-05-06: [CVE-2026-0300] Palo Alto Networks PAN-OS Out-of-bounds Write Vulnerability
Posted at: 5/6/2026, 7:11:38 PM - 2026-05-01: [CVE-2026-31431] Linux Kernel Incorrect Resource Transfer Between Spheres Vulnerability
Posted at: 5/1/2026, 7:39:18 PM - 2026-04-30: [CVE-2026-41940] WebPros cPanel & WHM and WP2 (WordPress Squared) Missing Authentication for Critical Function Vulnerability
Posted at: 4/30/2026, 4:54:44 PM - 2026-04-28: [CVE-2024-1708] ConnectWise ScreenConnect Path Traversal Vulnerability
Posted at: 4/28/2026, 7:43:15 PM - 2026-04-28: [CVE-2026-32202] Microsoft Windows Protection Mechanism Failure Vulnerability
Posted at: 4/28/2026, 7:43:15 PM - 2026-04-24: [CVE-2025-29635] D-Link DIR-823X Command Injection Vulnerability
Posted at: 4/24/2026, 7:38:24 PM - 2026-04-24: [CVE-2024-7399] Samsung MagicINFO 9 Server Path Traversal Vulnerability
Posted at: 4/24/2026, 7:38:24 PM - 2026-04-24: [CVE-2024-57728] SimpleHelp Path Traversal Vulnerability
Posted at: 4/24/2026, 7:38:24 PM