Full CISA KEV catalog
Every CVE the U.S. cybersecurity agency has ever flagged as actively exploited. Filter by category, sort by severity or exploit-likelihood, search by vendor or product.
| Added | CVE | Vendor / Product | Name & description | CVSS | EPSS |
|---|---|---|---|---|---|
| Jun 11, 2026 | CVE-2026-10520 | Ivanti Sentry |
Ivanti Sentry OS Command Injection Vulnerability
Ivanti Sentry (formerly known as MobileIron Sentry) contains an OS command injection vulnerability which could allow a remote unauthenticated user to achieve root-level remote cod…
|
10.0 | 47.9% |
| Jun 8, 2026 |
CVE-2026-50751
Ransomware |
Check Point Security Gateway |
Check Point Security Gateway Improper Authentication Vulnerability
Check Point Security Gateway contains an improper authentication vulnerability in IKEv1 key exchange that could allow an unauthenticated remote attacker to bypass user authenticat…
|
9.3 | 11.8% |
| May 29, 2026 | CVE-2026-0257 | Palo Alto Networks PAN-OS |
Palo Alto Networks PAN-OS Authentication Bypass Vulnerability
Palo Alto Networks PAN-OS contains an authentication bypass vulnerability that allows attackers to bypass security restrictions and establish an unauthorized VPN connection.
|
— | 58.8% |
| May 7, 2026 | CVE-2026-6973 | Ivanti Endpoint Manager Mobile (EPMM) |
Ivanti Endpoint Manager Mobile (EPMM) Improper Input Validation Vulnerability
Ivanti Endpoint Manager Mobile (EPMM) contains an improper input validation vulnerability that allows a remotely authenticated user with administrative access to achieve remote co…
|
— | 5.9% |
| May 6, 2026 | CVE-2026-0300 | Palo Alto Networks PAN-OS |
Palo Alto Networks PAN-OS Out-of-bounds Write Vulnerability
Palo Alto Networks PAN-OS contains an out-of-bounds write vulnerability in the User-ID Authentication Portal (aka Captive Portal) service that can allow an unauthenticated attacke…
|
— | 6.1% |
| Apr 13, 2026 | CVE-2026-21643 | Fortinet FortiClient EMS |
Fortinet FortiClient EMS SQL Injection Vulnerability
Fortinet FortiClient EMS contains a SQL injection vulnerability that may allow an unauthenticated attacker to execute unauthorized code or commands via specifically crafted HTTP r…
|
— | 70.9% |
| Apr 8, 2026 | CVE-2026-1340 | Ivanti Endpoint Manager Mobile (EPMM) |
Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability
Ivanti Endpoint Manager Mobile (EPMM) contains a code injection vulnerability that could allow attackers to achieve unauthenticated remote code execution.
|
— | 73.9% |
| Apr 6, 2026 | CVE-2026-35616 | Fortinet FortiClient EMS |
Fortinet FortiClient EMS Improper Access Control Vulnerability
Fortinet FortiClient EMS contains an improper access control vulnerability that may allow an unauthenticated attacker to execute unauthorized code or commands via crafted requests.
|
— | 35.7% |
| Mar 30, 2026 | CVE-2026-3055 | Citrix NetScaler |
Citrix NetScaler Out-of-Bounds Read Vulnerability
Citrix NetScaler ADC (formerly Citrix ADC), NetScaler Gateway (formerly Citrix Gateway) and NetScaler ADC FIPS and NDcPP contain an out-of-bounds reads vulnerability when configur…
|
— | 89.9% |
| Mar 27, 2026 | CVE-2025-53521 | F5 BIG-IP |
F5 BIG-IP Stack-Based Buffer Overflow Vulnerability
F5 BIG-IP APM contains a stack-based buffer overflow vulnerability that could allow a threat actor to achieve remote code execution.
|
— | 8.8% |
| Mar 9, 2026 | CVE-2026-1603 | Ivanti Endpoint Manager (EPM) |
Ivanti Endpoint Manager (EPM) Authentication Bypass Vulnerability
Ivanti Endpoint Manager (EPM) contains an authentication bypass using an alternate path or channel vulnerability that could allow a remote unauthenticated attacker to leak specifi…
|
— | 58.9% |
| Jan 29, 2026 | CVE-2026-1281 | Ivanti Endpoint Manager Mobile (EPMM) |
Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability
Ivanti Endpoint Manager Mobile (EPMM) contains a code injection vulnerability that could allow attackers to achieve unauthenticated remote code execution.
|
— | 81.6% |
| Jan 27, 2026 | CVE-2026-24858 | Fortinet Multiple Products |
Fortinet Multiple Products Authentication Bypass Using an Alternate Path or Channel Vulnerability
Fortinet FortiAnalyzer, FortiManager, FortiOS, and FortiProxy contain an authentication bypass using an alternate path or channel that could allow an attacker with a FortiCloud ac…
|
— | 4.0% |
| Dec 17, 2025 | CVE-2025-40602 | SonicWall SMA1000 appliance |
SonicWall SMA1000 Missing Authorization Vulnerability
SonicWall SMA1000 contains a missing authorization vulnerability that could allow for privilege escalation appliance management console (AMC) of affected devices.
|
— | 0.4% |
| Dec 16, 2025 | CVE-2025-59718 | Fortinet Multiple Products |
Fortinet Multiple Products Improper Verification of Cryptographic Signature Vulnerability
Fortinet FortiOS, FortiSwitchMaster, FortiProxy, and FortiWeb contain an improper verification of cryptographic signature vulnerability that may allow an unauthenticated attacker …
|
— | 12.1% |
| Nov 18, 2025 | CVE-2025-58034 | Fortinet FortiWeb |
Fortinet FortiWeb OS Command Injection Vulnerability
Fortinet FortiWeb contains an OS command Injection vulnerability that may allow an authenticated attacker to execute unauthorized code on the underlying system via crafted HTTP re…
|
— | 45.7% |
| Nov 14, 2025 | CVE-2025-64446 | Fortinet FortiWeb |
Fortinet FortiWeb Path Traversal Vulnerability
Fortinet FortiWeb contains a relative path traversal vulnerability that may allow an unauthenticated attacker to execute administrative commands on the system via crafted HTTP or …
|
— | 93.0% |
| Aug 26, 2025 | CVE-2025-7775 | Citrix NetScaler |
Citrix NetScaler Memory Overflow Vulnerability
Citrix NetScaler ADC and NetScaler Gateway contain a memory overflow vulnerability that could allow for remote code execution and/or denial of service.
|
— | 7.8% |
| Aug 25, 2025 | CVE-2024-8068 | Citrix Session Recording |
Citrix Session Recording Improper Privilege Management Vulnerability
Citrix Session Recording contains an improper privilege management vulnerability that could allow for privilege escalation to NetworkService Account access. An attacker must be an…
|
— | 8.1% |
| Aug 25, 2025 | CVE-2024-8069 | Citrix Session Recording |
Citrix Session Recording Deserialization of Untrusted Data Vulnerability
Citrix Session Recording contains a deserialization of untrusted data vulnerability that allows limited remote code execution with privilege of a NetworkService Account access. At…
|
— | 48.3% |
| Jul 18, 2025 | CVE-2025-25257 | Fortinet FortiWeb |
Fortinet FortiWeb SQL Injection Vulnerability
Fortinet FortiWeb contains a SQL injection vulnerability that may allow an unauthenticated attacker to execute unauthorized SQL code or commands via crafted HTTP or HTTPs requests.
|
— | 26.2% |
| Jul 10, 2025 |
CVE-2025-5777
Ransomware |
Citrix NetScaler ADC and Gateway |
Citrix NetScaler ADC and Gateway Out-of-Bounds Read Vulnerability
Citrix NetScaler ADC and Gateway contain an out-of-bounds read vulnerability due to insufficient input validation. This vulnerability can lead to memory overread when the NetScale…
|
— | 71.5% |
| Jun 30, 2025 | CVE-2025-6543 | Citrix NetScaler ADC and Gateway |
Citrix NetScaler ADC and Gateway Buffer Overflow Vulnerability
Citrix NetScaler ADC and Gateway contain a buffer overflow vulnerability leading to unintended control flow and Denial of Service. NetScaler must be configured as Gateway (VPN vir…
|
— | 1.1% |
| Jun 25, 2025 |
CVE-2019-6693
Ransomware |
Fortinet FortiOS |
Fortinet FortiOS Use of Hard-Coded Credentials Vulnerability
Fortinet FortiOS contains a use of hard-coded credentials vulnerability that could allow an attacker to cipher sensitive data in FortiOS configuration backup file via knowledge of…
|
— | 72.2% |
| May 19, 2025 | CVE-2025-4427 | Ivanti Endpoint Manager Mobile (EPMM) |
Ivanti Endpoint Manager Mobile (EPMM) Authentication Bypass Vulnerability
Ivanti Endpoint Manager Mobile (EPMM) contains an authentication bypass vulnerability in the API component that allows an attacker to access protected resources without proper cre…
|
— | 91.3% |
| May 19, 2025 | CVE-2025-4428 | Ivanti Endpoint Manager Mobile (EPMM) |
Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability
Ivanti Endpoint Manager Mobile (EPMM) contains a code injection vulnerability in the API component that allows an authenticated attacker to remotely execute arbitrary code via cra…
|
— | 41.0% |
| May 14, 2025 | CVE-2025-32756 | Fortinet Multiple Products |
Fortinet Multiple Products Stack-Based Buffer Overflow Vulnerability
Fortinet FortiFone, FortiVoice, FortiNDR and FortiMail contain a stack-based overflow vulnerability that may allow a remote unauthenticated attacker to execute arbitrary code or c…
|
— | 19.7% |
| May 1, 2025 | CVE-2023-44221 | SonicWall SMA100 Appliances |
SonicWall SMA100 Appliances OS Command Injection Vulnerability
SonicWall SMA100 appliances contain an OS command injection vulnerability in the SSL-VPN management interface that allows a remote, authenticated attacker with administrative priv…
|
— | 23.1% |
| Apr 16, 2025 | CVE-2021-20035 | SonicWall SMA100 Appliances |
SonicWall SMA100 Appliances OS Command Injection Vulnerability
SonicWall SMA100 appliances contain an OS command injection vulnerability in the management interface that allows a remote authenticated attacker to inject arbitrary commands as a…
|
— | 12.8% |
| Apr 4, 2025 |
CVE-2025-22457
Ransomware |
Ivanti Connect Secure, Policy Secure, and ZTA Gateways |
Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability
Ivanti Connect Secure, Policy Secure, and ZTA Gateways contains a stack-based buffer overflow vulnerability that allows a remote unauthenticated attacker to achieve remote code ex…
|
— | 58.9% |
Source: CISA KEV catalog. Severity (CVSS) and exploit-probability (EPSS) sync nightly from NVD and FIRST.