KEV

Known Exploited Vulnerabilities Catalog

External catalog of known exploited vulnerabilities conforming to GCVE BCP-07 standard.
Catalog UUID: caeb2787-0d58-4236-9039-7c86c3e566f3 (KEVIntel)

KEV Entries
2523
Vulnerability ID Status Exploited Status Updated Evidence Characteristics Actions
CVE-2022-22274
SonicWall - SonicOS
Confirmed
Asserted: 2025-04-28
Yes 2025-04-28
First seen: 2025-04-28
1 source
public_report
- Details
CVE-2017-17215
Huawei Technologies Co., Ltd. - HG532
Confirmed
Asserted: 2025-04-28
Yes 2025-04-28
First seen: 2025-04-28
1 source
public_report
- Details
CVE-2021-25114
Unknown - Paid Memberships Pro
Confirmed
Asserted: 2025-04-28
Yes 2025-04-28
First seen: 2025-04-28
1 source
public_report
- Details
CVE-2018-9995 Confirmed
Asserted: 2025-04-28
Yes 2025-04-28
First seen: 2025-04-28
1 source
public_report
- Details
CVE-2021-25899 Confirmed
Asserted: 2025-04-28
Yes 2025-04-28
First seen: 2025-04-28
1 source
public_report
- Details
CVE-2021-27850
Apache Software Foundation - Apache Tapestry
Confirmed
Asserted: 2025-04-28
Yes 2025-04-28
First seen: 2025-04-28
1 source
public_report
- Details
CVE-2021-4191
GitLab - GitLab
Confirmed
Asserted: 2025-04-28
Yes 2025-04-28
First seen: 2025-04-28
1 source
public_report
- Details
CVE-2023-24488
Citrix - Citrix ADC and Citrix Gateway
Confirmed
Asserted: 2025-04-28
Yes 2025-04-28
First seen: 2025-04-28
1 source
public_report
- Details
CVE-2021-32030 Confirmed
Asserted: 2025-04-28
Yes 2025-04-28
First seen: 2025-04-28
1 source
public_report
- Details
CVE-2021-26295
Apache Software Foundation - Apache OFBiz
Confirmed
Asserted: 2025-04-28
Yes 2025-04-28
First seen: 2025-04-28
1 source
public_report
- Details
displaying 991 - 1000 KEV entries in total 2523
About this Catalog

Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.

This Known Exploited Vulnerabilities (KEV) catalog conforms to the GCVE BCP-07 standard (Best Current Practice) standard for documenting vulnerabilities with confirmed or suspected active exploitation.

Each entry includes exploitation status, evidence sources, and characteristics to help organizations prioritize vulnerability remediation efforts.