Known Exploited Vulnerabilities Catalog
External catalog of known exploited vulnerabilities conforming to GCVE BCP-07 standard.
Catalog UUID: caeb2787-0d58-4236-9039-7c86c3e566f3 (KEVIntel)
| Vulnerability ID | Status | Exploited | Status Updated | Evidence | Characteristics | Actions |
|---|---|---|---|---|---|---|
| CVE-2021-35394 |
Confirmed
Asserted: 2021-12-10 |
Yes |
2021-12-10
First seen: 2021-12-10 |
1
source
public_report |
- | Details |
| CVE-2018-14847 |
Confirmed
Asserted: 2021-12-01 |
Yes |
2021-12-01
First seen: 2021-12-01 |
1
source
public_report |
- | Details |
|
CVE-2021-40438
Apache Software Foundation - Apache HTTP Server |
Confirmed
Asserted: 2021-12-01 |
Yes |
2021-12-01
First seen: 2021-12-01 |
1
source
public_report |
- | Details |
| CVE-2021-44077 |
Confirmed
Asserted: 2021-12-01 |
Yes |
2021-12-01
First seen: 2021-12-01 |
1
source
public_report |
- | Details |
| CVE-2021-37415 |
Confirmed
Asserted: 2021-12-01 |
Yes |
2021-12-01
First seen: 2021-12-01 |
1
source
public_report |
- | Details |
|
CVE-2020-11261
Qualcomm, Inc. - Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables |
Confirmed
Asserted: 2021-12-01 |
Yes |
2021-12-01
First seen: 2021-12-01 |
1
source
public_report |
- | Details |
|
CVE-2021-42292
Microsoft - Microsoft Office 2019 , Microsoft - Microsoft Office 2019 for Mac +7 more |
Confirmed
Asserted: 2021-11-17 |
Yes |
2021-11-17
First seen: 2021-11-17 |
1
source
public_report |
- | Details |
|
CVE-2021-22204
ExifTool - ExifTool |
Confirmed
Asserted: 2021-11-17 |
Yes |
2021-11-17
First seen: 2021-11-17 |
1
source
public_report |
- | Details |
|
CVE-2021-40449
Microsoft - Windows 10 Version 1809 , Microsoft - Windows Server 2019 +25 more |
Confirmed
Asserted: 2021-11-17 |
Yes |
2021-11-17
First seen: 2021-11-17 |
1
source
public_report |
- | Details |
|
CVE-2021-42321
Microsoft - Microsoft Exchange Server 2016 Cumulative Update 21 , Microsoft - Microsoft Exchange Server 2019 Cumulative Update 10 +2 more |
Confirmed
Asserted: 2021-11-17 |
Yes |
2021-11-17
First seen: 2021-11-17 |
1
source
public_report |
- | Details |
About this Catalog
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
This Known Exploited Vulnerabilities (KEV) catalog conforms to the GCVE BCP-07 standard (Best Current Practice) standard for documenting vulnerabilities with confirmed or suspected active exploitation.
Each entry includes exploitation status, evidence sources, and characteristics to help organizations prioritize vulnerability remediation efforts.