KEV
Known Exploited Vulnerabilities Catalog
External catalog of known exploited vulnerabilities conforming to GCVE BCP-07 standard.
Catalog UUID: caeb2787-0d58-4236-9039-7c86c3e566f3 (KEVIntel)
| Vulnerability ID | Status | Exploited | Status Updated | Evidence | Characteristics | Actions |
|---|---|---|---|---|---|---|
| CVE-2022-38296 |
Confirmed
Asserted: 2026-06-13 |
Yes |
2026-06-13
First seen: 2026-06-13 |
1
source
public_report |
- | Details |
|
CVE-2026-39808
Fortinet - FortiSandbox , Fortinet - FortiSandbox PaaS |
Confirmed
Asserted: 2026-06-12 |
Yes |
2026-06-12
First seen: 2026-06-12 |
1
source
public_report |
- | Details |
|
CVE-2021-31805
Apache Software Foundation - Apache Struts |
Confirmed
Asserted: 2026-06-12 |
Yes |
2026-06-12
First seen: 2026-06-12 |
1
source
public_report |
- | Details |
|
CVE-2021-30128
Apache Software Foundation - Apache OFBiz |
Confirmed
Asserted: 2026-06-12 |
Yes |
2026-06-12
First seen: 2026-06-12 |
1
source
public_report |
- | Details |
|
CVE-2020-6286
SAP SE - SAP NetWeaver AS JAVA (LM Configuration Wizard) |
Confirmed
Asserted: 2026-06-12 |
Yes |
2026-06-12
First seen: 2026-06-12 |
1
source
public_report |
- | Details |
|
CVE-2026-35273
Oracle Corporation - PeopleSoft Enterprise PeopleTools |
Confirmed
Asserted: 2026-06-11 |
Yes |
2026-06-11
First seen: 2026-06-11 |
1
source
public_report |
- | Details |
|
CVE-2026-10795
davidanderson - UpdraftPlus: WP Backup & Migration Plugin |
Confirmed
Asserted: 2026-06-11 |
Yes |
2026-06-11
First seen: 2026-06-11 |
1
source
public_report |
- | Details |
|
CVE-2025-5821
Case-Themes - Case Theme User |
Confirmed
Asserted: 2026-06-11 |
Yes |
2026-06-11
First seen: 2026-06-11 |
1
source
public_report |
- | Details |
|
CVE-2026-5027
langflow-ai - langflow |
Confirmed
Asserted: 2026-06-10 |
Yes |
2026-06-10
First seen: 2026-06-10 |
1
source
public_report |
- | Details |
|
CVE-2026-10520
ivanti - Sentry |
Confirmed
Asserted: 2026-06-10 |
Yes |
2026-06-10
First seen: 2026-06-10 |
1
source
public_report |
- | Details |
displaying 31 - 40 KEV entries in total 2523
About this Catalog
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
This Known Exploited Vulnerabilities (KEV) catalog conforms to the GCVE BCP-07 standard (Best Current Practice) standard for documenting vulnerabilities with confirmed or suspected active exploitation.
Each entry includes exploitation status, evidence sources, and characteristics to help organizations prioritize vulnerability remediation efforts.