Full CISA KEV catalog
Every CVE the U.S. cybersecurity agency has ever flagged as actively exploited. Filter by category, sort by severity or exploit-likelihood, search by vendor or product.
| Added | CVE | Vendor / Product | Name & description | CVSS | EPSS |
|---|---|---|---|---|---|
| May 24, 2022 | CVE-2017-0149 | Microsoft Internet Explorer |
Microsoft Internet Explorer Memory Corruption Vulnerability
Microsoft Internet Explorer contains a memory corruption vulnerability that allows remote attackers to execute code or cause a denial-of-service (DoS) via a crafted website.
|
— | 34.0% |
| May 24, 2022 | CVE-2017-0210 | Microsoft Internet Explorer |
Microsoft Internet Explorer Privilege Escalation Vulnerability
A privilege escalation vulnerability exists when Internet Explorer does not properly enforce cross-domain policies, which could allow an attacker to access information.
|
— | 43.0% |
| May 24, 2022 | CVE-2017-8543 | Microsoft Windows |
Microsoft Windows Search Remote Code Execution Vulnerability
Microsoft Windows allows an attacker to take control of the affected system when Windows Search fails to handle objects in memory.
|
— | 85.1% |
| May 24, 2022 | CVE-2018-8611 | Microsoft Windows |
Microsoft Windows Kernel Privilege Escalation Vulnerability
A privilege escalation vulnerability exists when the Windows kernel fails to properly handle objects in memory.
|
— | 16.4% |
| May 23, 2022 | CVE-2018-8589 | Microsoft Win32k |
Microsoft Win32k Privilege Escalation Vulnerability
A privilege escalation vulnerability exists when Windows improperly handles calls to Win32k.sys. An attacker who successfully exploited this vulnerability could run remote code in…
|
— | 50.4% |
| May 23, 2022 | CVE-2019-0676 | Microsoft Internet Explorer |
Microsoft Internet Explorer Information Disclosure Vulnerability
An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory. An attacker who successfully exploited this vulnerability could test fo…
|
— | 23.8% |
| May 23, 2022 | CVE-2019-0703 | Microsoft Windows |
Microsoft Windows SMB Information Disclosure Vulnerability
An information disclosure vulnerability exists in the way that the Windows SMB Server handles certain requests, which could lead to information disclosure from the server.
|
— | 19.2% |
| May 23, 2022 | CVE-2019-0880 | Microsoft Windows |
Microsoft Windows Privilege Escalation Vulnerability
A local elevation of privilege vulnerability exists in how splwow64.exe handles certain calls. An attacker who successfully exploited the vulnerability could elevate privileges on…
|
— | 4.1% |
| May 23, 2022 |
CVE-2019-1130
Ransomware |
Microsoft Windows |
Microsoft Windows AppX Deployment Service Privilege Escalation Vulnerability
A privilege escalation vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links.
|
— | 1.9% |
| May 23, 2022 |
CVE-2019-1385
Ransomware |
Microsoft Windows |
Microsoft Windows AppX Deployment Extensions Privilege Escalation Vulnerability
A privilege escalation vulnerability exists when the Windows AppX Deployment Extensions improperly performs privilege management, resulting in access to system files.
|
— | 0.5% |
| May 23, 2022 |
CVE-2020-0638
Ransomware |
Microsoft Update Notification Manager |
Microsoft Update Notification Manager Privilege Escalation Vulnerability
Microsoft Update Notification Manager contains an unspecified vulnerability that allows for privilege escalation.
|
— | 1.5% |
| May 23, 2022 | CVE-2020-1027 | Microsoft Windows |
Microsoft Windows Kernel Privilege Escalation Vulnerability
An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory. An attacker who successfully exploited the vulnerability could execute…
|
— | 11.9% |
| May 4, 2022 | CVE-2014-0322 | Microsoft Internet Explorer |
Microsoft Internet Explorer Use-After-Free Vulnerability
Use-after-free vulnerability in Microsoft Internet Explorer allows remote attackers to execute code.
|
— | 93.0% |
| May 4, 2022 | CVE-2014-4113 | Microsoft Win32k |
Microsoft Win32k Privilege Escalation Vulnerability
Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation.
|
— | 78.5% |
| Apr 25, 2022 | CVE-2021-40450 | Microsoft Win32k |
Microsoft Win32k Privilege Escalation Vulnerability
Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation.
|
— | 4.1% |
| Apr 25, 2022 | CVE-2021-41357 | Microsoft Win32k |
Microsoft Win32k Privilege Escalation Vulnerability
Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation.
|
— | 4.0% |
| Apr 25, 2022 | CVE-2022-21919 | Microsoft Windows |
Microsoft Windows User Profile Service Privilege Escalation Vulnerability
Microsoft Windows User Profile Service contains an unspecified vulnerability that allows for privilege escalation.
|
— | 0.3% |
| Apr 25, 2022 | CVE-2022-26904 | Microsoft Windows |
Microsoft Windows User Profile Service Privilege Escalation Vulnerability
Microsoft Windows User Profile Service contains an unspecified vulnerability that allows for privilege escalation.
|
— | 23.0% |
| Apr 19, 2022 | CVE-2022-22718 | Microsoft Windows |
Microsoft Windows Print Spooler Privilege Escalation Vulnerability
Microsoft Windows Print Spooler contains an unspecified vulnerability which allow for privilege escalation.
|
— | 7.7% |
| Apr 13, 2022 | CVE-2015-2502 | Microsoft Internet Explorer |
Microsoft Internet Explorer Memory Corruption Vulnerability
Microsoft Internet Explorer contains a memory corruption vulnerability that allows an attacker to execute code or cause a denial-of-service (DoS).
|
— | 21.7% |
| Apr 13, 2022 |
CVE-2022-24521
Ransomware |
Microsoft Windows |
Microsoft Windows CLFS Driver Privilege Escalation Vulnerability
Microsoft Windows Common Log File System (CLFS) Driver contains an unspecified vulnerability that allows for privilege escalation.
|
— | 7.5% |
| Apr 11, 2022 |
CVE-2021-42278
Ransomware |
Microsoft Active Directory |
Microsoft Active Directory Domain Services Privilege Escalation Vulnerability
Microsoft Active Directory Domain Services contains an unspecified vulnerability that allows for privilege escalation.
|
— | 94.1% |
| Apr 11, 2022 |
CVE-2021-42287
Ransomware |
Microsoft Active Directory |
Microsoft Active Directory Domain Services Privilege Escalation Vulnerability
Microsoft Active Directory Domain Services contains an unspecified vulnerability that allows for privilege escalation.
|
— | 94.0% |
| Apr 6, 2022 |
CVE-2017-0148
Ransomware |
Microsoft SMBv1 server |
Microsoft SMBv1 Server Remote Code Execution Vulnerability
The SMBv1 server in Microsoft allows remote attackers to execute arbitrary code via crafted packets.
|
— | 94.1% |
| Apr 6, 2022 | CVE-2021-31166 | Microsoft HTTP Protocol Stack |
Microsoft HTTP Protocol Stack Remote Code Execution Vulnerability
Microsoft HTTP Protocol Stack contains a vulnerability in http.sys that allows for remote code execution.
|
— | 93.1% |
| Mar 31, 2022 | CVE-2021-34484 | Microsoft Windows |
Microsoft Windows User Profile Service Privilege Escalation Vulnerability
Microsoft Windows User Profile Service contains an unspecified vulnerability that allows for privilege escalation.
|
— | 2.8% |
| Mar 28, 2022 | CVE-2010-4398 | Microsoft Windows |
Microsoft Windows Kernel Stack-Based Buffer Overflow Vulnerability
Stack-based buffer overflow in the RtlQueryRegistryValues function in win32k.sys in Microsoft Windows allows local users to gain privileges, and bypass the User Account Control (U…
|
— | 7.7% |
| Mar 28, 2022 | CVE-2011-2005 | Microsoft Ancillary Function Driver (afd.sys) |
Microsoft Ancillary Function Driver (afd.sys) Improper Input Validation Vulnerability
afd.sys in the Ancillary Function Driver in Microsoft Windows does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a c…
|
— | 67.1% |
| Mar 28, 2022 | CVE-2012-2539 | Microsoft Word |
Microsoft Word Remote Code Execution Vulnerability
Microsoft Word allows attackers to execute remote code or cause a denial-of-service (DoS) via crafted RTF data.
|
— | 84.4% |
| Mar 28, 2022 |
CVE-2013-2551
Ransomware |
Microsoft Internet Explorer |
Microsoft Internet Explorer Use-After-Free Vulnerability
Use-after-free vulnerability in Microsoft Internet Explorer allows remote attackers to execute remote code via a crafted web site that triggers access to a deleted object.
|
— | 92.4% |
Source: CISA KEV catalog. Severity (CVSS) and exploit-probability (EPSS) sync nightly from NVD and FIRST.