Full CISA KEV catalog

Every CVE the U.S. cybersecurity agency has ever flagged as actively exploited. Filter by category, sort by severity or exploit-likelihood, search by vendor or product.

Showing 1–30 of 531 CVEs · Page 1 of 18 30 per page
Added CVE Vendor / Product Name & description CVSS EPSS
Jun 11, 2026 CVE-2026-10520 Ivanti Sentry
endpoint vpn remote
Ivanti Sentry OS Command Injection Vulnerability
Ivanti Sentry (formerly known as MobileIron Sentry) contains an OS command injection vulnerability which could allow a remote unauthenticated user to achieve root-level remote cod…
10.0 47.9%
May 21, 2026 CVE-2026-34926 Trend Micro Apex One
endpoint
Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability
Trend Micro Apex One (on-premise) contains a directory traversal vulnerability that could allow a pre-authenticated local attacker to modify a key table on the server to inject ma…
1.0%
May 20, 2026 CVE-2008-4250 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Buffer Overflow Vulnerability
Microsoft Windows contains a buffer overflow vulnerability in the Windows Server Service that allows remote attackers to execute arbitrary code via a crafted RPC request that trig…
91.8%
May 20, 2026 CVE-2009-1537 Microsoft DirectX
endpoint m365 smb essential
Microsoft DirectX NULL Byte Overwrite Vulnerability
Microsoft DirectX contains a NULL byte overwrite vulnerability in the QuickTime Movie Parser Filter in quartz.dll in DirectShow which could allow remote attackers to execute arbit…
53.0%
May 20, 2026 CVE-2010-0249 Microsoft Internet Explorer
endpoint m365 smb essential
Microsoft Internet Explorer Use-After-Free Vulnerability
Microsoft Internet Explorer contains an use-after-free vulnerability that could allow remote attackers to execute arbitrary code by accessing a pointer associated with a deleted o…
88.7%
May 20, 2026 CVE-2010-0806 Microsoft Internet Explorer
endpoint m365 smb essential
Microsoft Internet Explorer Use-After-Free Vulnerability
Microsoft Internet Explorer contains an use-after-free vulnerability that could allow remote attackers to execute arbitrary code via vectors involving access to an invalid pointer…
87.3%
May 20, 2026 CVE-2026-41091 Microsoft Defender
endpoint m365 smb essential
Microsoft Defender Link Following Vulnerability
Microsoft Defender contains a link following vulnerability that allows an authorized attacker to elevate privileges locally.
8.1%
May 20, 2026 CVE-2026-45498 Microsoft Defender
endpoint m365 smb essential
Microsoft Defender Denial of Service Vulnerability
Microsoft Defender contains an unspecified vulnerability that allows for denial of service.
3.6%
May 15, 2026 CVE-2026-42897 Microsoft Microsoft
endpoint m365 smb essential
Microsoft Exchange Server Cross-Site Scripting Vulnerability
Microsoft Exchange Server contains a cross-site scripting vulnerability during web page generation in Outlook Web Access and when certain interaction conditions are met, arbitrary…
7.9%
May 7, 2026 CVE-2026-6973 Ivanti Endpoint Manager Mobile (EPMM)
endpoint vpn remote
Ivanti Endpoint Manager Mobile (EPMM) Improper Input Validation Vulnerability
Ivanti Endpoint Manager Mobile (EPMM) contains an improper input validation vulnerability that allows a remotely authenticated user with administrative access to achieve remote co…
5.9%
Apr 28, 2026 CVE-2026-32202 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Protection Mechanism Failure Vulnerability
Microsoft Windows Shell contains a protection mechanism failure vulnerability that allows an unauthorized attacker to perform spoofing over a network.
53.1%
Apr 22, 2026 CVE-2026-33825 Microsoft Defender
endpoint m365 smb essential
Microsoft Defender Insufficient Granularity of Access Control Vulnerability
Microsoft Defender contains an insufficient granularity of access control vulnerability that could allow an authorized attacker to escalate privileges locally.
9.0%
Apr 14, 2026 CVE-2009-0238 Microsoft Office
endpoint m365 smb essential
Microsoft Office Remote Code Execution
Microsoft Office Excel contains a remote code execution vulnerability that could allow an attacker to take complete control of an affected system if a user opens a specially craft…
74.7%
Apr 14, 2026 CVE-2026-32201 Microsoft SharePoint Server
endpoint m365 smb essential
Microsoft SharePoint Server Improper Input Validation Vulnerability
Microsoft SharePoint Server contains an improper input validation vulnerability that allows an unauthorized attacker to perform spoofing over a network.
7.9%
Apr 13, 2026 CVE-2012-1854 Microsoft Visual Basic for Applications (VBA)
endpoint m365 smb essential
Microsoft Visual Basic for Applications Insecure Library Loading Vulnerability
Microsoft Visual Basic for Applications (VBA) contains an insecure library loading vulnerability that could allow for remote code execution.
3.1%
Apr 13, 2026 CVE-2023-21529
Ransomware
Microsoft Exchange Server
endpoint m365 smb essential
Microsoft Exchange Server Deserialization of Untrusted Data Vulnerability
Microsoft Exchange Server contains a deserialization of untrusted data that allows an authenticated attacker to achieve remote code execution.
27.0%
Apr 13, 2026 CVE-2023-36424 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Out-of-Bounds Read Vulnerability
Microsoft Windows Common Log File System Driver contains an out-of-bounds read vulnerability that could allow a threat actor for privileges escalation
9.8%
Apr 13, 2026 CVE-2025-60710 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Link Following Vulnerability
Microsoft Windows contains a link following vulnerability that allows for privilege escalation
19.0%
Apr 8, 2026 CVE-2026-1340 Ivanti Endpoint Manager Mobile (EPMM)
endpoint vpn remote
Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability
Ivanti Endpoint Manager Mobile (EPMM) contains a code injection vulnerability that could allow attackers to achieve unauthenticated remote code execution.
73.9%
Mar 20, 2026 CVE-2025-31277 Apple Multiple Products
endpoint mobile smb essential
Apple Multiple Products Buffer Overflow Vulnerability
Apple Safari, iOS, watchOS, visionOS, iPadOS, macOS, and tvOS contain a buffer overflow vulnerability that could allow the processing of maliciously crafted web content which may …
0.3%
Mar 20, 2026 CVE-2025-43510 Apple Multiple Products
endpoint mobile smb essential
Apple Multiple Products Improper Locking Vulnerability
Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain an improper locking vulnerability that could allow a malicious application to cause unexpected changes in memory shar…
0.3%
Mar 20, 2026 CVE-2025-43520 Apple Multiple Products
endpoint mobile smb essential
Apple Multiple Products Classic Buffer Overflow Vulnerability
Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain a classic buffer overflow vulnerability which could allow a malicious application to cause unexpected system terminat…
0.3%
Mar 18, 2026 CVE-2026-20963 Microsoft SharePoint
endpoint m365 smb essential
Microsoft SharePoint Deserialization of Untrusted Data Vulnerability
Microsoft SharePoint contains a deserialization of untrusted data vulnerability that allows an unauthorized attacker to execute code over a network.
8.1%
Mar 9, 2026 CVE-2026-1603 Ivanti Endpoint Manager (EPM)
endpoint vpn remote
Ivanti Endpoint Manager (EPM) Authentication Bypass Vulnerability
Ivanti Endpoint Manager (EPM) contains an authentication bypass using an alternate path or channel vulnerability that could allow a remote unauthenticated attacker to leak specifi…
58.9%
Mar 5, 2026 CVE-2021-30952 Apple Multiple Products
endpoint mobile smb essential
Apple Multiple Products Integer Overflow or Wraparound Vulnerability
Apple tvOS, macOS, Safari, iPadOS and watchOS contain an integer overflow or wraparound vulnerability due to the processing of maliciously crafted web content that may lead to arb…
0.8%
Mar 5, 2026 CVE-2023-41974 Apple iOS and iPadOS
endpoint mobile smb essential
Apple iOS and iPadOS Use-After-Free Vulnerability
Apple iOS and iPadOS contain a use-after-free vulnerability. An app may be able to execute arbitrary code with kernel privileges.
0.2%
Mar 5, 2026 CVE-2023-43000 Apple Multiple Products
endpoint mobile smb essential
Apple Multiple products Use-After-Free Vulnerability
Apple macOS, iOS, iPadOS, and Safari 16.6 contain a use-after-free vulnerability due to the processing of maliciously crafted web content that may lead to memory corruption.
0.0%
Feb 17, 2026 CVE-2008-0015 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Video ActiveX Control Remote Code Execution Vulnerability
Microsoft Windows Video ActiveX Control contains a remote code execution vulnerability. An attacker could exploit the vulnerability by constructing a specially crafted Web page. W…
81.6%
Feb 12, 2026 CVE-2024-43468 Microsoft Configuration Manager
endpoint m365 smb essential
Microsoft Configuration Manager SQL Injection Vulnerability
Microsoft Configuration Manager contains an SQL injection vulnerability. An unauthenticated attacker could exploit this vulnerability by sending specially crafted requests to the …
83.1%
Feb 12, 2026 CVE-2026-20700 Apple Multiple Products
endpoint mobile smb essential
Apple Multiple Buffer Overflow Vulnerability
Apple iOS, macOS, tvOS, watchOS, and visionOS contain an improper restriction of operations within the bounds of a memory buffer vulnerability that could allow an attacker with me…
0.5%

Source: CISA KEV catalog. Severity (CVSS) and exploit-probability (EPSS) sync nightly from NVD and FIRST.