CISAKevBot

For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild: the Known Exploited Vulnerability (KEV) catalog. CISA strongly recommends all organizations review and monitor the KEV catalog and prioritize remediation of the listed vulnerabilities to reduce the likelihood of compromise by known threat actors.

Fediverse name:

Fediverse URL:

Feed URL: https://rud.is/cisa-kev.rss
Website: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Refreshed at: 6/2/2026, 7:21:34 PM

Entries

2026-04-24: [CVE-2024-57726] SimpleHelp Missing Authorization Vulnerability
Posted at: 4/24/2026, 7:38:24 PM
2026-04-23: [CVE-2026-39987] Marimo Remote Code Execution Vulnerability
Posted at: 4/23/2026, 6:33:49 PM
2026-04-22: [CVE-2026-33825] Microsoft Defender Insufficient Granularity of Access Control Vulnerability
Posted at: 4/22/2026, 9:38:11 PM
2026-04-20: [CVE-2026-20122] Cisco Catalyst SD-WAN Manager Incorrect Use of Privileged APIs Vulnerability
Posted at: 4/20/2026, 8:10:40 PM
2026-04-20: [CVE-2026-20133] Cisco Catalyst SD-WAN Manager Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Posted at: 4/20/2026, 8:10:40 PM
2026-04-20: [CVE-2025-2749] Kentico Xperience Path Traversal Vulnerability
Posted at: 4/20/2026, 8:10:40 PM
2026-04-20: [CVE-2023-27351] PaperCut NG/MF Improper Authentication Vulnerability
Posted at: 4/20/2026, 8:10:40 PM
2026-04-20: [CVE-2025-48700] Synacor Zimbra Collaboration Suite (ZCS) Cross-site Scripting Vulnerability
Posted at: 4/20/2026, 8:10:40 PM
2026-04-20: [CVE-2026-20128] Cisco Catalyst SD-WAN Manager Storing Passwords in a Recoverable Format Vulnerability
Posted at: 4/20/2026, 8:10:40 PM
2026-04-20: [CVE-2025-32975] Quest KACE Systems Management Appliance (SMA) Improper Authentication Vulnerability
Posted at: 4/20/2026, 8:10:40 PM

31 - 40 of 1614