Known Exploited Vulnerabilities Catalog
External catalog of known exploited vulnerabilities conforming to GCVE BCP-07 standard.
Catalog UUID: caeb2787-0d58-4236-9039-7c86c3e566f3 (KEVIntel)
| Vulnerability ID | Status | Exploited | Status Updated | Evidence | Characteristics | Actions |
|---|---|---|---|---|---|---|
|
CVE-2024-20404
Cisco - Cisco Unified Contact Center Enterprise , Cisco - Cisco Unified Contact Center Express +2 more |
Confirmed
Asserted: 2026-04-01 |
Yes |
2026-04-01
First seen: 2026-04-01 |
1
source
public_report |
- | Details |
|
CVE-2022-1768
davidfcarr - RSVPMaker |
Confirmed
Asserted: 2026-04-01 |
Yes |
2026-04-01
First seen: 2026-04-01 |
1
source
public_report |
- | Details |
|
CVE-2026-4368
NetScaler - ADC , NetScaler - Gateway |
Confirmed
Asserted: 2026-03-31 |
Yes |
2026-03-31
First seen: 2026-03-31 |
1
source
public_report |
- | Details |
| CVE-2021-46381 |
Confirmed
Asserted: 2026-03-31 |
Yes |
2026-03-31
First seen: 2026-03-31 |
1
source
public_report |
- | Details |
|
CVE-2018-25114
osCommerce - Online Merchant |
Confirmed
Asserted: 2026-03-30 |
Yes |
2026-03-30
First seen: 2026-03-30 |
1
source
public_report |
- | Details |
| CVE-2019-5434 |
Confirmed
Asserted: 2026-03-28 |
Yes |
2026-03-28
First seen: 2026-03-28 |
1
source
public_report |
- | Details |
|
CVE-2022-0346
Unknown - XML Sitemap Generator for Google |
Confirmed
Asserted: 2026-03-26 |
Yes |
2026-03-26
First seen: 2026-03-26 |
1
source
public_report |
- | Details |
|
CVE-2026-4681
PTC - Windchill PDMLink , PTC - FlexPLM |
Confirmed
Asserted: 2026-03-25 |
Yes |
2026-03-25
First seen: 2026-03-25 |
1
source
public_report |
- | Details |
|
CVE-2025-15503
Sangfor - Operation and Maintenance Management System |
Confirmed
Asserted: 2026-03-25 |
Yes |
2026-03-25
First seen: 2026-03-25 |
1
source
public_report |
- | Details |
| CVE-2022-40843 |
Confirmed
Asserted: 2026-03-25 |
Yes |
2026-03-25
First seen: 2026-03-25 |
1
source
public_report |
- | Details |
About this Catalog
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
This Known Exploited Vulnerabilities (KEV) catalog conforms to the GCVE BCP-07 standard (Best Current Practice) standard for documenting vulnerabilities with confirmed or suspected active exploitation.
Each entry includes exploitation status, evidence sources, and characteristics to help organizations prioritize vulnerability remediation efforts.