Known Exploited Vulnerabilities Catalog
External catalog of known exploited vulnerabilities conforming to GCVE BCP-07 standard.
Catalog UUID: caeb2787-0d58-4236-9039-7c86c3e566f3 (KEVIntel)
| Vulnerability ID | Status | Exploited | Status Updated | Evidence | Characteristics | Actions |
|---|---|---|---|---|---|---|
| CVE-2022-41352 |
Confirmed
Asserted: 2022-10-20 |
Yes |
2022-10-20
First seen: 2022-10-20 |
1
source
public_report |
- | Details |
| CVE-2017-20149 |
Confirmed
Asserted: 2022-10-15 |
Yes |
2022-10-15
First seen: 2022-10-15 |
1
source
public_report |
- | Details |
|
CVE-2022-41033
Microsoft - Windows 10 Version 1809 , Microsoft - Windows Server 2019 +23 more |
Confirmed
Asserted: 2022-10-11 |
Yes |
2022-10-11
First seen: 2022-10-11 |
1
source
public_report |
- | Details |
|
CVE-2022-40684
Fortinet - Fortinet FortiOS, FortiProxy, FortiSwitchManager |
Confirmed
Asserted: 2022-10-11 |
Yes |
2022-10-11
First seen: 2022-10-11 |
1
source
public_report |
- | Details |
|
CVE-2022-36804
Atlassian - Bitbucket Server , Atlassian - Bitbucket Data Center |
Confirmed
Asserted: 2022-09-30 |
Yes |
2022-09-30
First seen: 2022-09-30 |
1
source
public_report |
- | Details |
|
CVE-2022-41040
Microsoft - Microsoft Exchange Server 2013 Cumulative Update 23 , Microsoft - Microsoft Exchange Server 2016 Cumulative Update 22 +3 more |
Confirmed
Asserted: 2022-09-30 |
Yes |
2022-09-30
First seen: 2022-09-30 |
1
source
public_report |
- | Details |
|
CVE-2022-41082
Microsoft - Microsoft Exchange Server 2013 Cumulative Update 23 , Microsoft - Microsoft Exchange Server 2016 Cumulative Update 22 +3 more |
Confirmed
Asserted: 2022-09-30 |
Yes |
2022-09-30
First seen: 2022-09-30 |
1
source
public_report |
- | Details |
|
CVE-2022-3236
Sophos - Sophos Firewall |
Confirmed
Asserted: 2022-09-23 |
Yes |
2022-09-23
First seen: 2022-09-23 |
1
source
public_report |
- | Details |
| CVE-2022-35405 |
Confirmed
Asserted: 2022-09-22 |
Yes |
2022-09-22
First seen: 2022-09-22 |
1
source
public_report |
- | Details |
| CVE-2010-2568 |
Confirmed
Asserted: 2022-09-15 |
Yes |
2022-09-15
First seen: 2022-09-15 |
1
source
public_report |
- | Details |
About this Catalog
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
This Known Exploited Vulnerabilities (KEV) catalog conforms to the GCVE BCP-07 standard (Best Current Practice) standard for documenting vulnerabilities with confirmed or suspected active exploitation.
Each entry includes exploitation status, evidence sources, and characteristics to help organizations prioritize vulnerability remediation efforts.