Known Exploited Vulnerabilities Catalog
External catalog of known exploited vulnerabilities conforming to GCVE BCP-07 standard.
Catalog UUID: caeb2787-0d58-4236-9039-7c86c3e566f3 (KEVIntel)
| Vulnerability ID | Status | Exploited | Status Updated | Evidence | Characteristics | Actions |
|---|---|---|---|---|---|---|
| CVE-2025-51591 |
Confirmed
Asserted: 2025-09-25 |
Yes |
2025-09-25
First seen: 2025-09-25 |
1
source
public_report |
- | Details |
|
CVE-2025-20240
Cisco - Cisco IOS XE Software |
Confirmed
Asserted: 2025-09-25 |
Yes |
2025-09-25
First seen: 2025-09-25 |
1
source
public_report |
- | Details |
|
CVE-2025-20149
Cisco - IOS , Cisco - Cisco IOS XE Software |
Confirmed
Asserted: 2025-09-25 |
Yes |
2025-09-25
First seen: 2025-09-25 |
1
source
public_report |
- | Details |
| CVE-2015-1328 |
Confirmed
Asserted: 2025-09-19 |
Yes |
2025-09-19
First seen: 2025-09-19 |
1
source
public_report |
- | Details |
| CVE-2022-39986 |
Confirmed
Asserted: 2025-09-19 |
Yes |
2025-09-19
First seen: 2025-09-19 |
1
source
public_report |
- | Details |
|
CVE-2022-4117
Unknown - IWS |
Confirmed
Asserted: 2025-09-19 |
Yes |
2025-09-19
First seen: 2025-09-19 |
1
source
public_report |
- | Details |
|
CVE-2022-4447
Unknown - Fontsy |
Confirmed
Asserted: 2025-09-19 |
Yes |
2025-09-19
First seen: 2025-09-19 |
1
source
public_report |
- | Details |
| CVE-2022-40881 |
Confirmed
Asserted: 2025-09-19 |
Yes |
2025-09-19
First seen: 2025-09-19 |
1
source
public_report |
- | Details |
|
CVE-2022-31161
hap-wi - roxy-wi |
Confirmed
Asserted: 2025-09-18 |
Yes |
2025-09-18
First seen: 2025-09-18 |
1
source
public_report |
- | Details |
|
CVE-2022-0679
Unknown - Narnoo Distributor |
Confirmed
Asserted: 2025-09-18 |
Yes |
2025-09-18
First seen: 2025-09-18 |
1
source
public_report |
- | Details |
About this Catalog
Evidence-backed KEV intelligence enriched with confidence scoring, exploitation status, CISA KEV status, and sensor telemetry.
This Known Exploited Vulnerabilities (KEV) catalog conforms to the GCVE BCP-07 standard (Best Current Practice) standard for documenting vulnerabilities with confirmed or suspected active exploitation.
Each entry includes exploitation status, evidence sources, and characteristics to help organizations prioritize vulnerability remediation efforts.