Known Exploited Vulnerability Feed
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
2,675
Total KEVs
Known exploited vulnerabilities tracked in KEVIntel
1,028
Beyond CISA KEV
Additional exploited CVEs tracked beyond CISA KEV
54
KEVs Observed in Sensors (7d)
Tracked KEVs with live exploitation attempts in honeypots
1,826+
Artifacts Available
PoC, Nuclei, and scanner context
| CVE | Product | Vendor | Confidence | Exploitation Status | Sensors | Added | Artifacts |
|---|---|---|---|---|---|---|---|
| CVE-2024-6671 | WhatsUp Gold | Progress Software Corporation | High | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2026-28318 | Serv-U | SolarWinds | Confirmed | Active | — | about 1 month ago |
PoC
|
| CVE-2026-7473 | EOS | Arista Networks | Confirmed | Active | — | about 1 month ago |
PoC
|
| CVE-2026-3300 | Everest Forms Pro | WPEverest | High | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2026-20245 | Cisco Catalyst SD-WAN Controller, Cisco Catalyst SD-WAN Manager | Cisco | Confirmed | Active | — | about 1 month ago |
PoC
|
| CVE-2025-9316 | N-central | N-able | High | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2022-4059 | Cryptocurrency Widgets Pack | Unknown | High | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2023-6909 | mlflow/mlflow | mlflow | High | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2026-41176 | rclone | rclone | High | Active | — | about 1 month ago |
PoC
Nuclei
|
| CVE-2026-45247 | Full Page Cache Warmer for Magento 2 | Mirasvit | Confirmed | Active | — | about 2 months ago |
PoC
|
| CVE-2025-48828 | vBulletin | vBulletin | High | Active | — | about 2 months ago |
PoC
Nuclei
|
| CVE-2025-48827 | vBulletin | vBulletin | High | Active | — | about 2 months ago |
PoC
Nuclei
|
| CVE-2026-8206 | Kirki – Freeform Page Builder, Website Builder & Customizer | themeum | High | Active | — | about 2 months ago |
PoC
|
| CVE-2025-34037 | E4200, E3200, E3000, E2500 v1/v2, E2100L v1, E2000, E1550, E1500 v1, E1200 v1, E1000 v1, E900 v1 | Linksys | High | Active | — | about 2 months ago |
—
|
| CVE-2025-55346 | — | — | High | Active | — | about 2 months ago |
—
|
| CVE-2025-1302 | jsonpath-plus | JSONPath-Plus | High | Active | — | about 2 months ago |
PoC
Nuclei
|
| CVE-2024-12847 | DGN1000 | NETGEAR | Confirmed | Active | Yes | about 2 months ago |
VPatch
|
| CVE-2022-0492 | kernel | Linux | Confirmed | Active | — | about 2 months ago |
PoC
|
| CVE-2025-48595 | Android | Confirmed | Active | — | about 2 months ago |
—
|
|
| CVE-2026-41089 | Windows Server 2012, Windows Server 2012 (Server Core installation), Windows Server 2012 R2, Windows Server 2012 R2 (Server Core installation), Windows Server 2016, Windows Server 2016 (Server Core installation), Windows Server 2019, Windows Server 2019 (Server Core installation), Windows Server 2022, Windows Server 2022, 23H2 Edition (Server Core installation), Windows Server 2025, Windows Server 2025 (Server Core installation) | Microsoft | High | Active | — | about 2 months ago |
PoC
|
| CVE-2024-21182 | WebLogic Server | Oracle Corporation | Confirmed | Active | — | about 2 months ago |
PoC
|
| CVE-2025-34048 | DSL-2730U, DSL-2750U, DSL-2750E | D-Link | High | Active | — | about 2 months ago |
—
|
| CVE-2022-0785 | Daily Prayer Time | Unknown | High | Active | — | about 2 months ago |
PoC
Nuclei
|
| CVE-2022-0948 | Order Listener for WooCommerce – Play Sounds Instantly on New Orders | Unknown | High | Active | — | about 2 months ago |
PoC
Nuclei
|
| CVE-2022-2414 | Dogtag Certificate System | Dogtag PKI | High | Active | — | about 2 months ago |
PoC
Nuclei
|