CISAKevBot
For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild: the Known Exploited Vulnerability (KEV) catalog. CISA strongly recommends all organizations review and monitor the KEV catalog and prioritize remediation of the listed vulnerabilities to reduce the likelihood of compromise by known threat actors.
Fediverse name: Text copied!
Fediverse URL: Text copied!
Feed URL: https://rud.is/cisa-kev.rssWebsite: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Refreshed at: 12/29/2025, 2:46:40 PM
Entries
- 2025-07-22: [CVE-2025-49704] Microsoft SharePoint Code Injection Vulnerability
Posted at: 7/22/2025, 7:05:07 PM - 2025-07-22: [CVE-2025-49706] Microsoft SharePoint Improper Authentication Vulnerability
Posted at: 7/22/2025, 7:05:07 PM - 2025-07-20: [CVE-2025-53770] Microsoft SharePoint Deserialization of Untrusted Data Vulnerability
Posted at: 7/20/2025, 8:05:06 PM - 2025-07-18: [CVE-2025-25257] Fortinet FortiWeb SQL Injection Vulnerability
Posted at: 7/18/2025, 9:05:07 PM - 2025-07-14: [CVE-2025-47812] Wing FTP Server Improper Neutralization of Null Byte or NUL Character Vulnerability
Posted at: 7/14/2025, 7:10:05 PM - 2025-07-10: [CVE-2025-5777] Citrix NetScaler ADC and Gateway Out-of-Bounds Read Vulnerability
Posted at: 7/10/2025, 5:23:09 PM - 2025-07-07: [CVE-2019-9621] Synacor Zimbra Collaboration Suite (ZCS) Server-Side Request Forgery (SSRF) Vulnerability
Posted at: 7/7/2025, 7:01:04 PM - 2025-07-07: [CVE-2019-5418] Rails Ruby on Rails Path Traversal Vulnerability
Posted at: 7/7/2025, 7:01:04 PM - 2025-07-07: [CVE-2016-10033] PHPMailer Command Injection Vulnerability
Posted at: 7/7/2025, 7:01:04 PM - 2025-07-07: [CVE-2014-3931] Multi-Router Looking Glass (MRLG) Buffer Overflow Vulnerability
Posted at: 7/7/2025, 7:01:04 PM