Full CISA KEV catalog

Every CVE the U.S. cybersecurity agency has ever flagged as actively exploited. Filter by category, sort by severity or exploit-likelihood, search by vendor or product.

Showing 1–30 of 129 CVEs · Page 1 of 5 30 per page
Added CVE Vendor / Product Name & description CVSS EPSS
Jun 11, 2026 CVE-2026-10520 Ivanti Sentry
endpoint vpn remote
Ivanti Sentry OS Command Injection Vulnerability
Ivanti Sentry (formerly known as MobileIron Sentry) contains an OS command injection vulnerability which could allow a remote unauthenticated user to achieve root-level remote cod…
10.0 47.9%
Jun 8, 2026 CVE-2026-50751
Ransomware
Check Point Security Gateway
network vpn remote
Check Point Security Gateway Improper Authentication Vulnerability
Check Point Security Gateway contains an improper authentication vulnerability in IKEv1 key exchange that could allow an unauthenticated remote attacker to bypass user authenticat…
9.3 11.8%
May 29, 2026 CVE-2026-0257 Palo Alto Networks PAN-OS
network vpn remote
Palo Alto Networks PAN-OS Authentication Bypass Vulnerability
Palo Alto Networks PAN-OS contains an authentication bypass vulnerability that allows attackers to bypass security restrictions and establish an unauthorized VPN connection.
58.8%
May 7, 2026 CVE-2026-6973 Ivanti Endpoint Manager Mobile (EPMM)
endpoint vpn remote
Ivanti Endpoint Manager Mobile (EPMM) Improper Input Validation Vulnerability
Ivanti Endpoint Manager Mobile (EPMM) contains an improper input validation vulnerability that allows a remotely authenticated user with administrative access to achieve remote co…
5.9%
May 6, 2026 CVE-2026-0300 Palo Alto Networks PAN-OS
network vpn remote
Palo Alto Networks PAN-OS Out-of-bounds Write Vulnerability
Palo Alto Networks PAN-OS contains an out-of-bounds write vulnerability in the User-ID Authentication Portal (aka Captive Portal) service that can allow an unauthenticated attacke…
6.1%
Apr 13, 2026 CVE-2026-21643 Fortinet FortiClient EMS
network vpn remote
Fortinet FortiClient EMS SQL Injection Vulnerability
Fortinet FortiClient EMS contains a SQL injection vulnerability that may allow an unauthenticated attacker to execute unauthorized code or commands via specifically crafted HTTP r…
70.9%
Apr 8, 2026 CVE-2026-1340 Ivanti Endpoint Manager Mobile (EPMM)
endpoint vpn remote
Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability
Ivanti Endpoint Manager Mobile (EPMM) contains a code injection vulnerability that could allow attackers to achieve unauthenticated remote code execution.
73.9%
Apr 6, 2026 CVE-2026-35616 Fortinet FortiClient EMS
network vpn remote
Fortinet FortiClient EMS Improper Access Control Vulnerability
Fortinet FortiClient EMS contains an improper access control vulnerability that may allow an unauthenticated attacker to execute unauthorized code or commands via crafted requests.
35.7%
Mar 30, 2026 CVE-2026-3055 Citrix NetScaler
enterprise vpn remote
Citrix NetScaler Out-of-Bounds Read Vulnerability
Citrix NetScaler ADC (formerly Citrix ADC), NetScaler Gateway (formerly Citrix Gateway) and NetScaler ADC FIPS and NDcPP contain an out-of-bounds reads vulnerability when configur…
89.9%
Mar 27, 2026 CVE-2025-53521 F5 BIG-IP
network vpn remote
F5 BIG-IP Stack-Based Buffer Overflow Vulnerability
F5 BIG-IP APM contains a stack-based buffer overflow vulnerability that could allow a threat actor to achieve remote code execution.
8.8%
Mar 9, 2026 CVE-2026-1603 Ivanti Endpoint Manager (EPM)
endpoint vpn remote
Ivanti Endpoint Manager (EPM) Authentication Bypass Vulnerability
Ivanti Endpoint Manager (EPM) contains an authentication bypass using an alternate path or channel vulnerability that could allow a remote unauthenticated attacker to leak specifi…
58.9%
Jan 29, 2026 CVE-2026-1281 Ivanti Endpoint Manager Mobile (EPMM)
endpoint vpn remote
Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability
Ivanti Endpoint Manager Mobile (EPMM) contains a code injection vulnerability that could allow attackers to achieve unauthenticated remote code execution.
81.6%
Jan 27, 2026 CVE-2026-24858 Fortinet Multiple Products
network vpn remote
Fortinet Multiple Products Authentication Bypass Using an Alternate Path or Channel Vulnerability
Fortinet FortiAnalyzer, FortiManager, FortiOS, and FortiProxy contain an authentication bypass using an alternate path or channel that could allow an attacker with a FortiCloud ac…
4.0%
Dec 17, 2025 CVE-2025-40602 SonicWall SMA1000 appliance
network vpn remote
SonicWall SMA1000 Missing Authorization Vulnerability
SonicWall SMA1000 contains a missing authorization vulnerability that could allow for privilege escalation appliance management console (AMC) of affected devices.
0.4%
Dec 16, 2025 CVE-2025-59718 Fortinet Multiple Products
network vpn remote
Fortinet Multiple Products Improper Verification of Cryptographic Signature Vulnerability
Fortinet FortiOS, FortiSwitchMaster, FortiProxy, and FortiWeb contain an improper verification of cryptographic signature vulnerability that may allow an unauthenticated attacker …
12.1%
Nov 18, 2025 CVE-2025-58034 Fortinet FortiWeb
network vpn remote
Fortinet FortiWeb OS Command Injection Vulnerability
Fortinet FortiWeb contains an OS command Injection vulnerability that may allow an authenticated attacker to execute unauthorized code on the underlying system via crafted HTTP re…
45.7%
Nov 14, 2025 CVE-2025-64446 Fortinet FortiWeb
network vpn remote
Fortinet FortiWeb Path Traversal Vulnerability
Fortinet FortiWeb contains a relative path traversal vulnerability that may allow an unauthenticated attacker to execute administrative commands on the system via crafted HTTP or …
93.0%
Aug 26, 2025 CVE-2025-7775 Citrix NetScaler
enterprise vpn remote
Citrix NetScaler Memory Overflow Vulnerability
Citrix NetScaler ADC and NetScaler Gateway contain a memory overflow vulnerability that could allow for remote code execution and/or denial of service.
7.8%
Aug 25, 2025 CVE-2024-8068 Citrix Session Recording
enterprise vpn remote
Citrix Session Recording Improper Privilege Management Vulnerability
Citrix Session Recording contains an improper privilege management vulnerability that could allow for privilege escalation to NetworkService Account access. An attacker must be an…
8.1%
Aug 25, 2025 CVE-2024-8069 Citrix Session Recording
enterprise vpn remote
Citrix Session Recording Deserialization of Untrusted Data Vulnerability
Citrix Session Recording contains a deserialization of untrusted data vulnerability that allows limited remote code execution with privilege of a NetworkService Account access. At…
48.3%
Jul 18, 2025 CVE-2025-25257 Fortinet FortiWeb
network vpn remote
Fortinet FortiWeb SQL Injection Vulnerability
Fortinet FortiWeb contains a SQL injection vulnerability that may allow an unauthenticated attacker to execute unauthorized SQL code or commands via crafted HTTP or HTTPs requests.
26.2%
Jul 10, 2025 CVE-2025-5777
Ransomware
Citrix NetScaler ADC and Gateway
enterprise vpn remote
Citrix NetScaler ADC and Gateway Out-of-Bounds Read Vulnerability
Citrix NetScaler ADC and Gateway contain an out-of-bounds read vulnerability due to insufficient input validation. This vulnerability can lead to memory overread when the NetScale…
71.5%
Jun 30, 2025 CVE-2025-6543 Citrix NetScaler ADC and Gateway
enterprise vpn remote
Citrix NetScaler ADC and Gateway Buffer Overflow Vulnerability
Citrix NetScaler ADC and Gateway contain a buffer overflow vulnerability leading to unintended control flow and Denial of Service. NetScaler must be configured as Gateway (VPN vir…
1.1%
Jun 25, 2025 CVE-2019-6693
Ransomware
Fortinet FortiOS
network vpn remote
Fortinet FortiOS Use of Hard-Coded Credentials Vulnerability
Fortinet FortiOS contains a use of hard-coded credentials vulnerability that could allow an attacker to cipher sensitive data in FortiOS configuration backup file via knowledge of…
72.2%
May 19, 2025 CVE-2025-4427 Ivanti Endpoint Manager Mobile (EPMM)
endpoint vpn remote
Ivanti Endpoint Manager Mobile (EPMM) Authentication Bypass Vulnerability
Ivanti Endpoint Manager Mobile (EPMM) contains an authentication bypass vulnerability in the API component that allows an attacker to access protected resources without proper cre…
91.3%
May 19, 2025 CVE-2025-4428 Ivanti Endpoint Manager Mobile (EPMM)
endpoint vpn remote
Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability
Ivanti Endpoint Manager Mobile (EPMM) contains a code injection vulnerability in the API component that allows an authenticated attacker to remotely execute arbitrary code via cra…
41.0%
May 14, 2025 CVE-2025-32756 Fortinet Multiple Products
network vpn remote
Fortinet Multiple Products Stack-Based Buffer Overflow Vulnerability
Fortinet FortiFone, FortiVoice, FortiNDR and FortiMail contain a stack-based overflow vulnerability that may allow a remote unauthenticated attacker to execute arbitrary code or c…
19.7%
May 1, 2025 CVE-2023-44221 SonicWall SMA100 Appliances
network vpn remote
SonicWall SMA100 Appliances OS Command Injection Vulnerability
SonicWall SMA100 appliances contain an OS command injection vulnerability in the SSL-VPN management interface that allows a remote, authenticated attacker with administrative priv…
23.1%
Apr 16, 2025 CVE-2021-20035 SonicWall SMA100 Appliances
network vpn remote
SonicWall SMA100 Appliances OS Command Injection Vulnerability
SonicWall SMA100 appliances contain an OS command injection vulnerability in the management interface that allows a remote authenticated attacker to inject arbitrary commands as a…
12.8%
Apr 4, 2025 CVE-2025-22457
Ransomware
Ivanti Connect Secure, Policy Secure, and ZTA Gateways
endpoint vpn remote
Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability
Ivanti Connect Secure, Policy Secure, and ZTA Gateways contains a stack-based buffer overflow vulnerability that allows a remote unauthenticated attacker to achieve remote code ex…
58.9%

Source: CISA KEV catalog. Severity (CVSS) and exploit-probability (EPSS) sync nightly from NVD and FIRST.