KEV

Known Exploited Vulnerabilities Catalog

External catalog of known exploited vulnerabilities conforming to GCVE BCP-07 standard.
Catalog UUID: caeb2787-0d58-4236-9039-7c86c3e566f3 (KEVIntel)

KEV Entries
2523
Vulnerability ID Status Exploited Status Updated Evidence Characteristics Actions
CVE-2021-40870 Confirmed
Asserted: 2022-01-18
Yes 2022-01-18
First seen: 2022-01-18
1 source
public_report
- Details
CVE-2021-33766
Microsoft - Microsoft Exchange Server 2019 Cumulative Update 9 , Microsoft - Microsoft Exchange Server 2016 Cumulative Update 20 +3 more
Confirmed
Asserted: 2022-01-18
Yes 2022-01-18
First seen: 2022-01-18
1 source
public_report
- Details
CVE-2021-21315
sebhildebrandt - systeminformation
Confirmed
Asserted: 2022-01-18
Yes 2022-01-18
First seen: 2022-01-18
1 source
public_report
- Details
CVE-2021-22991 Confirmed
Asserted: 2022-01-18
Yes 2022-01-18
First seen: 2022-01-18
1 source
public_report
- Details
CVE-2020-14864
Oracle Corporation - Business Intelligence Enterprise Edition
Confirmed
Asserted: 2022-01-18
Yes 2022-01-18
First seen: 2022-01-18
1 source
public_report
- Details
CVE-2020-13671
Drupal - Drupal Core
Confirmed
Asserted: 2022-01-18
Yes 2022-01-18
First seen: 2022-01-18
1 source
public_report
- Details
CVE-2020-11978
Apache Software Foundation - Apache Airflow
Confirmed
Asserted: 2022-01-18
Yes 2022-01-18
First seen: 2022-01-18
1 source
public_report
- Details
CVE-2021-32648
octobercms - october
Confirmed
Asserted: 2022-01-18
Yes 2022-01-18
First seen: 2022-01-18
1 source
public_report
- Details
CVE-2021-21975 Confirmed
Asserted: 2022-01-18
Yes 2022-01-18
First seen: 2022-01-18
1 source
public_report
- Details
CVE-2022-21894
Microsoft - Windows 10 Version 1809 , Microsoft - Windows Server 2019 +17 more
Confirmed
Asserted: 2022-01-11
Yes 2022-01-11
First seen: 2022-01-11
1 source
public_report
- Details
displaying 2061 - 2070 KEV entries in total 2523
About this Catalog

Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.

This Known Exploited Vulnerabilities (KEV) catalog conforms to the GCVE BCP-07 standard (Best Current Practice) standard for documenting vulnerabilities with confirmed or suspected active exploitation.

Each entry includes exploitation status, evidence sources, and characteristics to help organizations prioritize vulnerability remediation efforts.