Known Exploited Vulnerability Catalogs
Catalogs of Known Exploited Vulnerabilities (KEV) explorable via this Vulnerability-Lookup instance. All catalogs conform to the GCVE BCP-07 standard.
CISA
1631 entriesFor the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild. Organizations should use the KEV catalog as an input to their vulnerability management prioritization framework.
UUID:405284c2-e461-4670-8979-7fd2c9755a60
Shadowserver
1231 entriesVulnerabilities actively exploited in the wild as observed by The Shadowserver Foundation's global honeypot network (honeypot/exploited-vulnerabilities API), ranked by number of unique IPs per day and enriched with CVSS scores and CISA KEV status.
UUID:c8fb6bf1-f81f-4cb8-95b1-eadbb3b54ee8
Hover a cell to compare two catalogs.
Hover a line for a catalog's running total.
Across 2224 vulnerabilities listed by more than one catalog, half reach all of their catalogs within 2 days of the first listing. The bars show how often each catalog is the earliest to list a vulnerability it shares.
Overlapping catalogs list 49% of shared vulnerabilities on the same day (often because one catalog mirrors another's listing date), so the per-catalog lead below is typically near zero — it is an average, surfacing the genuine separation in the long tail.
Hover a catalog for its lead-time detail.
Hover a column to see which catalogs share that group of vulnerabilities.
| Vulnerability ID | First Listed | GCVE | CISA | CIRCL | ENISA | Shadowserver | KEVIntel |
|---|---|---|---|---|---|---|---|
| CVE-2022-34538 | 2026-01-25 | ||||||
| CVE-2018-11714 | 2026-01-25 | ||||||
| CVE-2023-40748 | 2026-01-25 | ||||||
| CVE-2024-37079 | 2026-01-23 | ||||||
|
CVE-2025-5571
D-Link - DCS-932L |
2026-01-23 | ||||||
|
CVE-2023-7335
Hangzhou Kuozhi Network Technology Co., Ltd. - EduSoho |
2026-01-23 | ||||||
| CVE-2020-11963 | 2026-01-23 | ||||||
|
CVE-2025-7081
Belkin - F9K1122 |
2026-01-23 | ||||||
|
CVE-2026-24061
GNU - Inetutils |
2026-01-23 | ||||||
|
CVE-2025-7407
Netgear - D6400 |
2026-01-22 | ||||||
|
CVE-2025-8829
Linksys - RE6250 , Linksys - RE6300 +4 more |
2026-01-22 | ||||||
|
CVE-2025-6485
TOTOLINK - A3002R |
2026-01-22 | ||||||
|
CVE-2025-7544
Tenda - AC1206 |
2026-01-22 | ||||||
|
CVE-2025-31125
vitejs - vite |
2026-01-22 | ||||||
|
CVE-2025-54313
prettier - eslint-config-prettier |
2026-01-22 | ||||||
| CVE-2022-31208 | 2026-01-22 | ||||||
|
CVE-2025-34068
Samsung Electronics - WLAN AP WEA453e |
2026-01-21 | ||||||
|
CVE-2025-34067
Hikvision - Integrated Security Management Platform |
2026-01-21 | ||||||
|
CVE-2025-34031
Moodle - Jmol Plugin |
2026-01-21 | ||||||
|
CVE-2025-34049
OptiLink - ONT1GEW GPON |
2026-01-21 |