Known Exploited Vulnerabilities Catalog
External catalog of known exploited vulnerabilities conforming to GCVE BCP-07 standard.
Catalog UUID: caeb2787-0d58-4236-9039-7c86c3e566f3 (KEVIntel)
| Vulnerability ID | Status | Exploited | Status Updated | Evidence | Characteristics | Actions |
|---|---|---|---|---|---|---|
|
CVE-2022-39952
Fortinet - FortiNAC |
Confirmed
Asserted: 2025-04-23 |
Yes |
2025-04-23
First seen: 2025-04-23 |
1
source
public_report |
- | Details |
|
CVE-2021-21307
lucee - Lucee |
Confirmed
Asserted: 2025-04-22 |
Yes |
2025-04-22
First seen: 2025-04-22 |
1
source
public_report |
- | Details |
| CVE-2021-21978 |
Confirmed
Asserted: 2025-04-22 |
Yes |
2025-04-22
First seen: 2025-04-22 |
1
source
public_report |
- | Details |
| CVE-2022-29383 |
Confirmed
Asserted: 2025-04-22 |
Yes |
2025-04-22
First seen: 2025-04-22 |
1
source
public_report |
- | Details |
|
CVE-2025-31200
Apple - iOS and iPadOS , Apple - macOS +3 more |
Confirmed
Asserted: 2025-04-17 |
Yes |
2025-04-17
First seen: 2025-04-17 |
1
source
public_report |
- | Details |
|
CVE-2025-24054
Microsoft - Windows 10 Version 1507 , Microsoft - Windows 10 Version 1607 +21 more |
Confirmed
Asserted: 2025-04-17 |
Yes |
2025-04-17
First seen: 2025-04-17 |
1
source
public_report |
- | Details |
|
CVE-2025-31201
Apple - iOS and iPadOS , Apple - macOS +2 more |
Confirmed
Asserted: 2025-04-17 |
Yes |
2025-04-17
First seen: 2025-04-17 |
1
source
public_report |
- | Details |
|
CVE-2021-20035
SonicWall - SMA100 |
Confirmed
Asserted: 2025-04-16 |
Yes |
2025-04-16
First seen: 2025-04-16 |
1
source
public_report |
- | Details |
|
CVE-2025-3102
brainstormforce - OttoKit: All-in-One Automation Platform |
Confirmed
Asserted: 2025-04-09 |
Yes |
2025-04-09
First seen: 2025-04-09 |
1
source
public_report |
- | Details |
|
CVE-2024-53150
Linux - Linux |
Confirmed
Asserted: 2025-04-09 |
Yes |
2025-04-09
First seen: 2025-04-09 |
1
source
public_report |
- | Details |
About this Catalog
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
This Known Exploited Vulnerabilities (KEV) catalog conforms to the GCVE BCP-07 standard (Best Current Practice) standard for documenting vulnerabilities with confirmed or suspected active exploitation.
Each entry includes exploitation status, evidence sources, and characteristics to help organizations prioritize vulnerability remediation efforts.