Known Exploited Vulnerabilities Catalog
External catalog of known exploited vulnerabilities conforming to GCVE BCP-07 standard.
Catalog UUID: caeb2787-0d58-4236-9039-7c86c3e566f3 (KEVIntel)
| Vulnerability ID | Status | Exploited | Status Updated | Evidence | Characteristics | Actions |
|---|---|---|---|---|---|---|
|
CVE-2025-15503
Sangfor - Operation and Maintenance Management System |
Confirmed
Asserted: 2026-03-25 |
Yes |
2026-03-25
First seen: 2026-03-25 |
1
source
public_report |
- | Details |
|
CVE-2025-25037
Aquatronica - Aquatronica Controller System |
Confirmed
Asserted: 2026-03-24 |
Yes |
2026-03-24
First seen: 2026-03-24 |
1
source
public_report |
- | Details |
|
CVE-2021-47795
Geovision - GeoVision Geowebserver |
Confirmed
Asserted: 2026-03-24 |
Yes |
2026-03-24
First seen: 2026-03-24 |
1
source
public_report |
- | Details |
|
CVE-2026-21992
Oracle Corporation - Oracle Identity Manager , Oracle Corporation - Oracle Web Services Manager |
Confirmed
Asserted: 2026-03-23 |
Yes |
2026-03-23
First seen: 2026-03-23 |
1
source
public_report |
- | Details |
|
CVE-2025-34054
AVTECH - IP camera, DVR, and NVR Devices |
Confirmed
Asserted: 2026-03-23 |
Yes |
2026-03-23
First seen: 2026-03-23 |
1
source
public_report |
- | Details |
| CVE-2020-10173 |
Confirmed
Asserted: 2026-03-21 |
Yes |
2026-03-21
First seen: 2026-03-21 |
1
source
public_report |
- | Details |
|
CVE-2026-21902
Juniper Networks - Junos OS Evolved |
Confirmed
Asserted: 2026-03-19 |
Yes |
2026-03-19
First seen: 2026-03-19 |
1
source
public_report |
- | Details |
|
CVE-2023-4542
D-Link - DAR-8000-10 |
Confirmed
Asserted: 2026-03-19 |
Yes |
2026-03-19
First seen: 2026-03-19 |
1
source
public_report |
- | Details |
|
CVE-2025-34030
sar2html - sar2html |
Confirmed
Asserted: 2026-03-19 |
Yes |
2026-03-19
First seen: 2026-03-19 |
1
source
public_report |
- | Details |
|
CVE-2026-32746
GNU - inetutils |
Confirmed
Asserted: 2026-03-18 |
Yes |
2026-03-18
First seen: 2026-03-18 |
1
source
public_report |
- | Details |
About this Catalog
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
This Known Exploited Vulnerabilities (KEV) catalog conforms to the GCVE BCP-07 standard (Best Current Practice) standard for documenting vulnerabilities with confirmed or suspected active exploitation.
Each entry includes exploitation status, evidence sources, and characteristics to help organizations prioritize vulnerability remediation efforts.