CISA Known Exploited Vulnerabilities Catalog

For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild. Organizations should use the KEV catalog as an input to their vulnerability management prioritization framework.Y

    9.8

    CVSS31
    CVE-2022-29464 - WSO2 Multiple Products Unrestrictive Upload of File Vulnerability -

    Action Due May 16, 2022 Target Vendor : WSO2

    Description : Multiple WSO2 products allow for unrestricted file upload, resulting in remote code execution.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Known

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2022-29464

    Alert Date: Apr 25, 2022 | 1153 days ago

    7.0

    CVSS31
    CVE-2022-26904 - Microsoft Windows User Profile Service Privilege Escalation Vulnerability -

    Action Due May 16, 2022 Target Vendor : Microsoft

    Description : Microsoft Windows User Profile Service contains an unspecified vulnerability that allows for privilege escalation.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2022-26904

    Alert Date: Apr 25, 2022 | 1153 days ago

    7.8

    CVSS31
    CVE-2021-40450 - Microsoft Win32k Privilege Escalation Vulnerability -

    Action Due May 16, 2022 Target Vendor : Microsoft

    Description : Microsoft Win32k contains an unspecified vulnerability that allows for privilege escalation.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2021-40450

    Alert Date: Apr 25, 2022 | 1153 days ago

    6.1

    CVSS31
    CVE-2018-6882 - Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability -

    Action Due May 10, 2022 Target Vendor : Zimbra

    Description : Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnerability that might allow remote attackers to inject arbitrary web script or HTML.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Known

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-6882

    Alert Date: Apr 19, 2022 | 1159 days ago

    9.8

    CVSS31
    CVE-2019-3568 - WhatsApp VOIP Stack Buffer Overflow Vulnerability -

    Action Due May 10, 2022 Target Vendor : Meta Platforms

    Description : A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via specially crafted series of RTCP packets sent to a target phone number.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2019-3568

    Alert Date: Apr 19, 2022 | 1159 days ago

    7.8

    CVSS31
    CVE-2022-22718 - Microsoft Windows Print Spooler Privilege Escalation Vulnerability -

    Action Due May 10, 2022 Target Vendor : Microsoft

    Description : Microsoft Windows Print Spooler contains an unspecified vulnerability which allow for privilege escalation.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2022-22718

    Alert Date: Apr 19, 2022 | 1159 days ago

    8.8

    CVSS31
    CVE-2022-1364 - Google Chromium V8 Type Confusion Vulnerability -

    Action Due May 06, 2022 Target Vendor : Google

    Description : Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2022-1364

    Alert Date: Apr 15, 2022 | 1163 days ago

    9.8

    CVSS31
    CVE-2019-3929 - Crestron Multiple Products Command Injection Vulnerability -

    Action Due May 06, 2022 Target Vendor : Crestron

    Description : Multiple Crestron products are vulnerable to command injection via the file_transfer.cgi HTTP endpoint. A remote, unauthenticated attacker can use this vulnerability to execute operating system commands as root.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2019-3929

    Alert Date: Apr 15, 2022 | 1163 days ago

    9.8

    CVSS31
    CVE-2019-16057 - D-Link DNS-320 Remote Code Execution Vulnerability -

    Action Due May 06, 2022 Target Vendor : D-Link

    Description : The login_mgr.cgi script in D-Link DNS-320 is vulnerable to remote code execution.

    Action : The impacted product is end-of-life and should be disconnected if still in use.

    Known To Be Used in Ransomware Campaigns? : Known

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2019-16057

    Alert Date: Apr 15, 2022 | 1163 days ago

    9.8

    CVSS31
    CVE-2018-7841 - Schneider Electric U.motion Builder SQL Injection Vulnerability -

    Action Due May 06, 2022 Target Vendor : Schneider Electric

    Description : A SQL Injection vulnerability exists in U.motion Builder software which could cause unwanted code execution when an improper set of characters is entered.

    Action : The impacted product is end-of-life and should be disconnected if still in use.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-7841

    Alert Date: Apr 15, 2022 | 1163 days ago

    7.5

    CVSS31
    CVE-2016-4523 - Trihedral VTScada (formerly VTS) Denial-of-Service Vulnerability -

    Action Due May 06, 2022 Target Vendor : Trihedral

    Description : The WAP interface in Trihedral VTScada (formerly VTS) allows remote attackers to cause a denial-of-service (DoS).

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2016-4523

    Alert Date: Apr 15, 2022 | 1163 days ago

    9.8

    CVSS31
    CVE-2014-0780 - InduSoft Web Studio NTWebServer Directory Traversal Vulnerability -

    Action Due May 06, 2022 Target Vendor : InduSoft

    Description : InduSoft Web Studio NTWebServer contains a directory traversal vulnerability that allows remote attackers to read administrative passwords in APP files, allowing for remote code execution.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2014-0780

    Alert Date: Apr 15, 2022 | 1163 days ago

    9.8

    CVSS31
    CVE-2010-5330 - Ubiquiti AirOS Command Injection Vulnerability -

    Action Due May 06, 2022 Target Vendor : Ubiquiti

    Description : Certain Ubiquiti devices contain a command injection vulnerability via a GET request to stainfo.cgi.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2010-5330

    Alert Date: Apr 15, 2022 | 1163 days ago

    7.8

    CVSS31
    CVE-2022-22960 - VMware Multiple Products Privilege Escalation Vulnerability -

    Action Due May 06, 2022 Target Vendor : VMware

    Description : VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a privilege escalation vulnerability due to improper permissions in support scripts.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2022-22960

    Alert Date: Apr 15, 2022 | 1163 days ago

    9.8

    CVSS31
    CVE-2007-3010 - Alcatel OmniPCX Enterprise Remote Code Execution Vulnerability -

    Action Due May 06, 2022 Target Vendor : Alcatel

    Description : masterCGI in the Unified Maintenance Tool in Alcatel OmniPCX Enterprise Communication Server allows remote attackers to execute arbitrary commands.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2007-3010

    Alert Date: Apr 15, 2022 | 1163 days ago

    9.8

    CVSS31
    CVE-2022-22954 - VMware Workspace ONE Access and Identity Manager Server-Side Template Injection Vulnerability -

    Action Due May 05, 2022 Target Vendor : VMware

    Description : VMware Workspace ONE Access and Identity Manager allow for remote code execution due to server-side template injection.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Known

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2022-22954

    Alert Date: Apr 14, 2022 | 1164 days ago

    9.8

    CVSS31
    CVE-2018-7602 - Drupal Core Remote Code Execution Vulnerability -

    Action Due May 04, 2022 Target Vendor : Drupal

    Description : A remote code execution vulnerability exists within multiple subsystems of Drupal that can allow attackers to exploit multiple attack vectors on a Drupal site.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Known

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-7602

    Alert Date: Apr 13, 2022 | 1165 days ago

    9.8

    CVSS31
    CVE-2018-20753 - Kaseya VSA Remote Code Execution Vulnerability -

    Action Due May 04, 2022 Target Vendor : Kaseya

    Description : Kaseya VSA RMM allows unprivileged remote attackers to execute PowerShell payloads on all managed devices.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Known

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-20753

    Alert Date: Apr 13, 2022 | 1165 days ago

    9.8

    CVSS31
    CVE-2015-5122 - Adobe Flash Player Use-After-Free Vulnerability -

    Action Due May 04, 2022 Target Vendor : Adobe

    Description : Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) implementation in Adobe Flash Player allows remote attackers to execute code or cause a denial-of-service (DoS).

    Action : The impacted product is end-of-life and should be disconnected if still in use.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2015-5122

    Alert Date: Apr 13, 2022 | 1165 days ago

    9.8

    CVSS31
    CVE-2015-3113 - Adobe Flash Player Heap-Based Buffer Overflow Vulnerability -

    Action Due May 04, 2022 Target Vendor : Adobe

    Description : Heap-based buffer overflow vulnerability in Adobe Flash Player allows remote attackers to execute code.

    Action : The impacted product is end-of-life and should be disconnected if still in use.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2015-3113

    Alert Date: Apr 13, 2022 | 1165 days ago
Showing 20 of 1370 Results

Filters

© cvefeed.io
Latest DB Update: Jun. 21, 2025 18:03