KEV

Known Exploited Vulnerabilities Catalog

External catalog of known exploited vulnerabilities conforming to GCVE BCP-07 standard.
Catalog UUID: caeb2787-0d58-4236-9039-7c86c3e566f3 (KEVIntel)

KEV Entries
2523
Vulnerability ID Status Exploited Status Updated Evidence Characteristics Actions
CVE-2022-42948 Confirmed
Asserted: 2023-03-30
Yes 2023-03-30
First seen: 2023-03-30
1 source
public_report
- Details
CVE-2023-27637 Confirmed
Asserted: 2023-03-22
Yes 2023-03-22
First seen: 2023-03-22
1 source
public_report
- Details
CVE-2023-26360
Adobe - ColdFusion
Confirmed
Asserted: 2023-03-15
Yes 2023-03-15
First seen: 2023-03-15
1 source
public_report
- Details
CVE-2022-41328
Fortinet - FortiOS
Confirmed
Asserted: 2023-03-14
Yes 2023-03-14
First seen: 2023-03-14
1 source
public_report
- Details
CVE-2023-23397
Microsoft - Microsoft Office LTSC 2021 , Microsoft - Microsoft Outlook 2016 +3 more
Confirmed
Asserted: 2023-03-14
Yes 2023-03-14
First seen: 2023-03-14
1 source
public_report
- Details
CVE-2023-24880
Microsoft - Windows 10 Version 1809 , Microsoft - Windows Server 2019 +10 more
Confirmed
Asserted: 2023-03-14
Yes 2023-03-14
First seen: 2023-03-14
1 source
public_report
- Details
CVE-2020-5741 Confirmed
Asserted: 2023-03-10
Yes 2023-03-10
First seen: 2023-03-10
1 source
public_report
- Details
CVE-2021-39144
x-stream - xstream
Confirmed
Asserted: 2023-03-10
Yes 2023-03-10
First seen: 2023-03-10
1 source
public_report
- Details
CVE-2022-28810 Confirmed
Asserted: 2023-03-07
Yes 2023-03-07
First seen: 2023-03-07
1 source
public_report
- Details
CVE-2022-33891
Apache Software Foundation - Apache Spark
Confirmed
Asserted: 2023-03-07
Yes 2023-03-07
First seen: 2023-03-07
1 source
public_report
- Details
displaying 1491 - 1500 KEV entries in total 2523
About this Catalog

Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.

This Known Exploited Vulnerabilities (KEV) catalog conforms to the GCVE BCP-07 standard (Best Current Practice) standard for documenting vulnerabilities with confirmed or suspected active exploitation.

Each entry includes exploitation status, evidence sources, and characteristics to help organizations prioritize vulnerability remediation efforts.