Full CISA KEV catalog

Every CVE the U.S. cybersecurity agency has ever flagged as actively exploited. Filter by category, sort by severity or exploit-likelihood, search by vendor or product.

Showing 31–60 of 383 CVEs · Page 2 of 13 30 per page
Added CVE Vendor / Product Name & description CVSS EPSS
Oct 24, 2025 CVE-2025-59287 Microsoft Windows
endpoint m365 server os smb essential
Microsoft Windows Server Update Service (WSUS) Deserialization of Untrusted Data Vulnerability
Microsoft Windows Server Update Service (WSUS) contains a deserialization of untrusted data vulnerability that allows for remote code execution.
66.2%
Oct 20, 2025 CVE-2025-33073 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows SMB Client Improper Access Control Vulnerability
Microsoft Windows SMB Client contains an improper access control vulnerability that could allow for privilege escalation. An attacker could execute a specially crafted malicious s…
44.3%
Oct 14, 2025 CVE-2025-24990 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Untrusted Pointer Dereference Vulnerability
Microsoft Windows Agere Modem Driver contains an untrusted pointer dereference vulnerability that allows for privilege escalation. An attacker who successfully exploited this vuln…
2.8%
Oct 14, 2025 CVE-2025-59230 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Improper Access Control Vulnerability
Microsoft Windows contains an improper access control vulnerability in Windows Remote Access Connection Manager which could allow an authorized attacker to elevate privileges loca…
4.5%
Oct 6, 2025 CVE-2010-3962 Microsoft Internet Explorer
endpoint m365 smb essential
Microsoft Internet Explorer Uninitialized Memory Corruption Vulnerability
Microsoft Internet Explorer contains an uninitialized memory corruption vulnerability that could allow for remote code execution. The impacted product could be end-of-life (EoL) a…
89.7%
Oct 6, 2025 CVE-2011-3402 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Remote Code Execution Vulnerability
Microsoft Windows Kernel contains an unspecified vulnerability in the TrueType font parsing engine in win32k.sys in the kernel-mode drivers that allows remote attackers to execute…
88.3%
Oct 6, 2025 CVE-2013-3918 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Out-of-Bounds Write Vulnerability
Microsoft Windows contains an out-of-bounds write vulnerability in the InformationCardSigninHelper Class ActiveX control, icardie.dll. An attacker could exploit the vulnerability …
88.5%
Oct 6, 2025 CVE-2021-43226 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Privilege Escalation Vulnerability
Microsoft Windows Common Log File System Driver contains a privilege escalation vulnerability that could allow a local, privileged attacker to bypass certain security mechanisms.
8.4%
Aug 12, 2025 CVE-2007-0671 Microsoft Office
endpoint m365 smb essential
Microsoft Office Excel Remote Code Execution Vulnerability
Microsoft Office Excel contains a remote code execution vulnerability that can be exploited when a specially crafted Excel file is opened. This malicious file could be delivered a…
52.3%
Aug 12, 2025 CVE-2013-3893 Microsoft Internet Explorer
endpoint m365 smb essential
Microsoft Internet Explorer Resource Management Errors Vulnerability
Microsoft Internet Explorer contains a memory corruption vulnerability that allows for remote code execution. The impacted products could be end-of-life (EoL) and/or end-of-servic…
84.9%
Jul 22, 2025 CVE-2025-49704
Ransomware
Microsoft SharePoint
endpoint m365 smb essential
Microsoft SharePoint Code Injection Vulnerability
Microsoft SharePoint contains a code injection vulnerability that could allow an authorized attacker to execute code over a network. This vulnerability could be chained with CVE-2…
59.6%
Jul 22, 2025 CVE-2025-49706
Ransomware
Microsoft SharePoint
endpoint m365 smb essential
Microsoft SharePoint Improper Authentication Vulnerability
Microsoft SharePoint contains an improper authentication vulnerability that allows an authorized attacker to perform spoofing over a network. Successfully exploitation could allow…
73.8%
Jul 20, 2025 CVE-2025-53770
Ransomware
Microsoft SharePoint
endpoint m365 smb essential
Microsoft SharePoint Deserialization of Untrusted Data Vulnerability
Microsoft SharePoint Server on-premises contains a deserialization of untrusted data vulnerability that could allow an unauthorized attacker to execute code over a network. This v…
88.2%
Jun 10, 2025 CVE-2025-33053 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows External Control of File Name or Path Vulnerability
Microsoft Windows contains an external control of file name or path vulnerability that could allow an attacker to execute code from a remote WebDAV location specified by the Worki…
50.3%
May 13, 2025 CVE-2025-30397 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Scripting Engine Type Confusion Vulnerability
Microsoft Windows Scripting Engine contains a type confusion vulnerability that allows an unauthorized attacker to execute code over a network via a specially crafted URL.
20.7%
May 13, 2025 CVE-2025-30400 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows DWM Core Library Use-After-Free Vulnerability
Microsoft Windows DWM Core Library contains a use-after-free vulnerability that allows an authorized attacker to elevate privileges locally.
0.9%
May 13, 2025 CVE-2025-32701 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability
Microsoft Windows Common Log File System (CLFS) Driver contains a use-after-free vulnerability that allows an authorized attacker to elevate privileges locally.
1.9%
May 13, 2025 CVE-2025-32706 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Common Log File System (CLFS) Driver Heap-Based Buffer Overflow Vulnerability
Microsoft Windows Common Log File System (CLFS) Driver contains a heap-based buffer overflow vulnerability that allows an authorized attacker to elevate privileges locally.
1.1%
May 13, 2025 CVE-2025-32709 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Ancillary Function Driver for WinSock Use-After-Free Vulnerability
Microsoft Windows Ancillary Function Driver for WinSock contains a use-after-free vulnerability that allows an authorized attacker to escalate privileges to administrator.
1.0%
Apr 17, 2025 CVE-2025-24054 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability
Microsoft Windows NTLM contains an external control of file name or path vulnerability that allows an unauthorized attacker to perform spoofing over a network.
8.0%
Apr 8, 2025 CVE-2025-29824
Ransomware
Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability
Microsoft Windows Common Log File System (CLFS) Driver contains a use-after-free vulnerability that allows an authorized attacker to elevate privileges locally.
0.8%
Mar 11, 2025 CVE-2025-24983 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Win32k Use-After-Free Vulnerability
Microsoft Windows Win32 Kernel Subsystem contains a use-after-free vulnerability that allows an authorized attacker to elevate privileges locally.
1.8%
Mar 11, 2025 CVE-2025-24984 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows NTFS Information Disclosure Vulnerability
Microsoft Windows New Technology File System (NTFS) contains an insertion of sensitive Information into log file vulnerability that allows an unauthorized attacker to disclose inf…
4.3%
Mar 11, 2025 CVE-2025-24985 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Fast FAT File System Driver Integer Overflow Vulnerability
Microsoft Windows Fast FAT File System Driver contains an integer overflow or wraparound vulnerability that allows an unauthorized attacker to execute code locally.
2.1%
Mar 11, 2025 CVE-2025-24991 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows NTFS Out-Of-Bounds Read Vulnerability
Microsoft Windows New Technology File System (NTFS) contains an out-of-bounds read vulnerability that allows an authorized attacker to disclose information locally.
1.6%
Mar 11, 2025 CVE-2025-24993 Microsoft Windows
endpoint m365 smb essential
Microsoft Windows NTFS Heap-Based Buffer Overflow Vulnerability
Microsoft Windows New Technology File System (NTFS) contains a heap-based buffer overflow vulnerability that allows an unauthorized attacker to execute code locally.
2.5%
Mar 11, 2025 CVE-2025-26633
Ransomware
Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Management Console (MMC) Improper Neutralization Vulnerability
Microsoft Windows Management Console (MMC) contains an improper neutralization vulnerability that allows an unauthorized attacker to bypass a security feature locally.
45.3%
Mar 3, 2025 CVE-2018-8639
Ransomware
Microsoft Windows
endpoint m365 smb essential
Microsoft Windows Win32k Improper Resource Shutdown or Release Vulnerability
Microsoft Windows Win32k contains an improper resource shutdown or release vulnerability that allows for local, authenticated privilege escalation. An attacker who successfully ex…
33.2%
Feb 25, 2025 CVE-2024-49035 Microsoft Partner Center
endpoint m365 smb essential
Microsoft Partner Center Improper Access Control Vulnerability
Microsoft Partner Center contains an improper access control vulnerability that allows an attacker to escalate privileges.
6.2%
Feb 21, 2025 CVE-2025-24989 Microsoft Power Pages
endpoint m365 smb essential
Microsoft Power Pages Improper Access Control Vulnerability
Microsoft Power Pages contains an improper access control vulnerability that allows an unauthorized attacker to elevate privileges over a network potentially bypassing the user re…
31.6%

Source: CISA KEV catalog. Severity (CVSS) and exploit-probability (EPSS) sync nightly from NVD and FIRST.