Known Exploited Vulnerability Feed
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
2,673
Total KEVs
Known exploited vulnerabilities tracked in KEVIntel
1,026
Beyond CISA KEV
Additional exploited CVEs tracked beyond CISA KEV
54
KEVs Observed in Sensors (7d)
Tracked KEVs with live exploitation attempts in honeypots
1,825+
Artifacts Available
PoC, Nuclei, and scanner context
| CVE | Product | Vendor | Confidence | Exploitation Status | Sensors | Added | Artifacts |
|---|---|---|---|---|---|---|---|
| CVE-2024-36420 | Flowise | FlowiseAI | Confirmed | Active | Yes | 2 days ago |
PoC
Nuclei
|
| CVE-2026-46442 | Flowise | FlowiseAI | Confirmed | Active | Yes | 2 days ago |
PoC
|
| CVE-2026-25089 | FortiSandbox, FortiSandbox Cloud, FortiSandbox PaaS | Fortinet | Confirmed | Active | — | 2 days ago |
PoC
|
| CVE-2026-58644 | Microsoft SharePoint Enterprise Server 2016, Microsoft SharePoint Server 2019, Microsoft SharePoint Server Subscription Edition | Microsoft | Confirmed | Active | — | 2 days ago |
—
|
| CVE-2023-4346 | KNX Protocol Connection Authorization Option 1 | KNX Association | Confirmed | Active | — | 3 days ago |
—
|
| CVE-2026-15410 | SMA1000 | SonicWall | Confirmed | Active | — | 4 days ago |
PoC
|
| CVE-2026-15409 | SMA1000 | SonicWall | Confirmed | Active | Yes | 4 days ago |
PoC
VPatch
|
| CVE-2026-56164 | Microsoft SharePoint Enterprise Server 2016, Microsoft SharePoint Server 2019, Microsoft SharePoint Server Subscription Edition | Microsoft | Confirmed | Active | — | 4 days ago |
PoC
|
| CVE-2026-56155 | Windows 10 Version 1607, Windows 10 Version 1809, Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation), Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows Server 2025, Windows Server 2025 (Server Core installation) | Microsoft | Confirmed | Active | — | 4 days ago |
—
|
| CVE-2024-29972 | NAS326 firmware, NAS542 firmware | Zyxel | Confirmed | Active | Yes | 5 days ago |
PoC
Nuclei
|
| CVE-2008-4128 | IOS | Cisco | Confirmed | Active | — | 5 days ago |
—
|
| CVE-2026-2699 | ShareFile Storage Zones Controller | Progress | High | Active | — | 8 days ago |
PoC
Nuclei
VPatch
|
| CVE-2026-48939 | iCagenda extension for Joomla | icagenda.com | Confirmed | Active | — | 8 days ago |
PoC
|
| CVE-2026-56291 | balbooa.com Balbooa Forms extension for Joomla | balbooa.com | Confirmed | Active | — | 8 days ago |
PoC
|
| CVE-2022-50992 | E-cology | Weaver Network Co., Ltd. | High | Active | — | 10 days ago |
—
|
| CVE-2026-1207 | Django | djangoproject | Confirmed | Active | Yes | 10 days ago |
PoC
Nuclei
VPatch
|
| CVE-2026-1125 | DIR-823X | D-Link | High | Active | — | 10 days ago |
—
|
| CVE-2026-4631 | Red Hat Enterprise Linux 10, Red Hat Enterprise Linux 10.0 Extended Update Support, Red Hat Enterprise Linux 9, Red Hat Enterprise Linux 9.6 Extended Update Support, Red Hat Enterprise Linux 7, Red Hat Enterprise Linux 8 | Red Hat | High | Active | — | 10 days ago |
PoC
Nuclei
|
| CVE-2023-39361 | cacti | Cacti | High | Active | — | 10 days ago |
PoC
Nuclei
|
| CVE-2026-56290 | JoomlaCK.fr Page Builder CK extension for Joomla | joomlack.fr | Confirmed | Active | — | 11 days ago |
PoC
|
| CVE-2026-55255 | langflow | langflow-ai | Confirmed | Active | Yes | 11 days ago |
PoC
|
| CVE-2026-48908 | SP Page Builder extension for Joomla | joomshaper.net | Confirmed | Active | — | 11 days ago |
PoC
|
| CVE-2026-48282 | ColdFusion | Adobe | Confirmed | Active | Yes | 16 days ago |
PoC
Nuclei
VPatch
|
| CVE-2026-8451 | ADC, Gateway | NetScaler | Confirmed | Active | Yes | 16 days ago |
PoC
|
| CVE-2026-45659 | Microsoft SharePoint Enterprise Server 2016, Microsoft SharePoint Server 2019, Microsoft SharePoint Server Subscription Edition | Microsoft | Confirmed | Active | — | 17 days ago |
PoC
|