Known Exploited Vulnerability Feed
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
2,673
Total KEVs
Known exploited vulnerabilities tracked in KEVIntel
1,026
Beyond CISA KEV
Additional exploited CVEs tracked beyond CISA KEV
54
KEVs Observed in Sensors (7d)
Tracked KEVs with live exploitation attempts in honeypots
1,825+
Artifacts Available
PoC, Nuclei, and scanner context
| CVE | Product | Vendor | Confidence | Exploitation Status | Sensors | Added | Artifacts |
|---|---|---|---|---|---|---|---|
| CVE-2024-36420 | Flowise | FlowiseAI | Confirmed | Active | Yes | 2 days ago |
PoC
Nuclei
|
| CVE-2026-46442 | Flowise | FlowiseAI | Confirmed | Active | Yes | 2 days ago |
PoC
|
| CVE-2026-15409 | SMA1000 | SonicWall | Confirmed | Active | Yes | 5 days ago |
PoC
VPatch
|
| CVE-2024-29972 | NAS326 firmware, NAS542 firmware | Zyxel | Confirmed | Active | Yes | 5 days ago |
PoC
Nuclei
|
| CVE-2026-1207 | Django | djangoproject | Confirmed | Active | Yes | 10 days ago |
PoC
Nuclei
VPatch
|
| CVE-2026-55255 | langflow | langflow-ai | Confirmed | Active | Yes | 12 days ago |
PoC
|
| CVE-2026-48282 | ColdFusion | Adobe | Confirmed | Active | Yes | 17 days ago |
PoC
Nuclei
VPatch
|
| CVE-2026-8451 | ADC, Gateway | NetScaler | Confirmed | Active | Yes | 17 days ago |
PoC
|
| CVE-2026-8037 | LoadMaster, ECS Connections Manager, Object Scale Connection Manager, MOVEit WAF | Progress Software | Confirmed | Active | Yes | 18 days ago |
PoC
Nuclei
VPatch
|
| CVE-2026-52813 | gogs | gogs | Confirmed | Active | Yes | 19 days ago |
PoC
VPatch
|
| CVE-2026-46817 | Oracle Payments | Oracle Corporation | Confirmed | Active | Yes | 20 days ago |
PoC
VPatch
|
| CVE-2026-8054 | dotCMS Core | dotCMS | Confirmed | Active | Yes | 22 days ago |
PoC
Nuclei
VPatch
|
| CVE-2023-6567 | LearnPress – WordPress LMS Plugin | thimpress | Confirmed | Active | Yes | 22 days ago |
PoC
Nuclei
|
| CVE-2026-20230 | Cisco Unified Communications Manager | Cisco | Confirmed | Active | Yes | 25 days ago |
PoC
VPatch
|
| CVE-2021-30128 | Apache OFBiz | Apache Software Foundation | Confirmed | Active | Yes | 27 days ago |
PoC
Nuclei
VPatch
|
| CVE-2026-4020 | Gravity SMTP | RocketGenius | Confirmed | Active | Yes | about 1 month ago |
PoC
Nuclei
VPatch
|
| CVE-2026-39813 | FortiSandbox, FortiSandbox Cloud | Fortinet | Confirmed | Active | Yes | about 1 month ago |
PoC
VPatch
|
| CVE-2021-31805 | Apache Struts | Apache Software Foundation | Confirmed | Active | Yes | about 1 month ago |
PoC
Nuclei
VPatch
|
| CVE-2026-20253 | Splunk Enterprise | Splunk | Confirmed | Active | Yes | about 1 month ago |
PoC
Nuclei
VPatch
|
| CVE-2020-6286 | SAP NetWeaver AS JAVA (LM Configuration Wizard) | SAP SE | Confirmed | Active | Yes | about 1 month ago |
PoC
VPatch
|
| CVE-2026-39808 | FortiSandbox, FortiSandbox PaaS | Fortinet | Confirmed | Active | Yes | about 1 month ago |
PoC
Nuclei
VPatch
|
| CVE-2026-35273 | PeopleSoft Enterprise PeopleTools | Oracle Corporation | Confirmed | Active | Yes | about 1 month ago |
PoC
Nuclei
VPatch
|
| CVE-2026-5027 | langflow | langflow-ai | Confirmed | Active | Yes | about 1 month ago |
PoC
Nuclei
|
| CVE-2026-10520 | Sentry | ivanti | Confirmed | Active | Yes | about 1 month ago |
PoC
Nuclei
VPatch
|
| CVE-2026-34910 | UniFi OS Server, UDM, UDM-Pro, UDM-SE, UDM-Pro-Max, UDM-Beast, EFG, UDW, UDR, UDR7, UDR-5G, Express 7, UNVR, UNVR-Pro, UNVR-Instant, UNVR-G2, UNVR-G2-Pro, ENVR, ENVR-Core, UNAS-2, UNAS-4, UNAS-Pro, UNAS-Pro-4, UNAS-Pro-8, UCKP, UCK, UCK-Enterprise, UCG-Ultra, UCG-Max, UCG-Fiber, UCG-Industrial | Ubiquiti Inc | Confirmed | Active | Yes | about 1 month ago |
PoC
Nuclei
VPatch
|