Known Exploited Vulnerabilities Catalog
External catalog of known exploited vulnerabilities conforming to GCVE BCP-07 standard.
Catalog UUID: caeb2787-0d58-4236-9039-7c86c3e566f3 (KEVIntel)
| Vulnerability ID | Status | Exploited | Status Updated | Evidence | Characteristics | Actions |
|---|---|---|---|---|---|---|
|
CVE-2025-55752
Apache Software Foundation - Apache Tomcat , Siemens - SIMATIC CN 4100 |
Confirmed
Asserted: 2025-10-28 |
Yes |
2025-10-28
First seen: 2025-10-28 |
1
source
public_report |
- | Details |
| CVE-2025-60595 |
Confirmed
Asserted: 2025-10-28 |
Yes |
2025-10-28
First seen: 2025-10-28 |
1
source
public_report |
- | Details |
|
CVE-2024-6387
Red Hat - Red Hat Enterprise Linux 9 , Red Hat - Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions +19 more |
Confirmed
Asserted: 2025-10-28 |
Yes |
2025-10-28
First seen: 2025-10-28 |
1
source
public_report |
- | Details |
| CVE-2025-61156 |
Confirmed
Asserted: 2025-10-27 |
Yes |
2025-10-27
First seen: 2025-10-27 |
1
source
public_report |
- | Details |
|
CVE-2025-8868
Progress Software - Chef Automate |
Confirmed
Asserted: 2025-10-27 |
Yes |
2025-10-27
First seen: 2025-10-27 |
1
source
public_report |
- | Details |
|
CVE-2023-5970
SonicWall - SMA100 |
Confirmed
Asserted: 2025-10-26 |
Yes |
2025-10-26
First seen: 2025-10-26 |
1
source
public_report |
- | Details |
|
CVE-2022-1703
SonicWall - SMA100 |
Confirmed
Asserted: 2025-10-26 |
Yes |
2025-10-26
First seen: 2025-10-26 |
1
source
public_report |
- | Details |
|
CVE-2022-2915
SonicWall - SMA100 |
Confirmed
Asserted: 2025-10-26 |
Yes |
2025-10-26
First seen: 2025-10-26 |
1
source
public_report |
- | Details |
|
CVE-2025-24477
Fortinet - FortiOS |
Confirmed
Asserted: 2025-10-26 |
Yes |
2025-10-26
First seen: 2025-10-26 |
1
source
public_report |
- | Details |
|
CVE-2025-59474
Jenkins Project - Jenkins |
Confirmed
Asserted: 2025-10-26 |
Yes |
2025-10-26
First seen: 2025-10-26 |
1
source
public_report |
- | Details |
About this Catalog
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
This Known Exploited Vulnerabilities (KEV) catalog conforms to the GCVE BCP-07 standard (Best Current Practice) standard for documenting vulnerabilities with confirmed or suspected active exploitation.
Each entry includes exploitation status, evidence sources, and characteristics to help organizations prioritize vulnerability remediation efforts.