CISA Known Exploited Vulnerabilities (KEV)

  1. Home
  2. CISA KEV
For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild. Organizations should use the KEV catalog as an input to their vulnerability management prioritization framework.Y

    10.0

    HIGH
    CVE-2017-8543 - Microsoft Windows Search Remote Code Execution Vulnerability -

    Action Due Jun 14, 2022 Target Vendor : Microsoft

    Description : Microsoft Windows allows an attacker to take control of the affected system when Windows Search fails to handle objects in memory.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2017-8543

    Alert Date: May 24, 2022 | 1201 days ago

    9.8

    CRITICAL
    CVE-2017-18362 - Kaseya VSA SQL Injection Vulnerability -

    Action Due Jun 14, 2022 Target Vendor : Kaseya

    Description : ConnectWise ManagedITSync integration for Kaseya VSA is vulnerable to unauthenticated remote commands that allow full direct access to the Kaseya VSA database.

    Action : The impacted product is end-of-life and should be disconnected if still in use.

    Known To Be Used in Ransomware Campaigns? : Known

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2017-18362

    Alert Date: May 24, 2022 | 1201 days ago

    4.3

    MEDIUM
    CVE-2016-0162 - Microsoft Internet Explorer Information Disclosure Vulnerability -

    Action Due Jun 14, 2022 Target Vendor : Microsoft

    Description : An information disclosure vulnerability exists when Internet Explorer does not properly handle JavaScript. The vulnerability could allow an attacker to detect specific files on the user's computer.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2016-0162

    Alert Date: May 24, 2022 | 1201 days ago

    6.5

    MEDIUM
    CVE-2016-3351 - Microsoft Internet Explorer and Edge Information Disclosure Vulnerability -

    Action Due Jun 14, 2022 Target Vendor : Microsoft

    Description : An information disclosure vulnerability exists in the way that certain functions in Internet Explorer and Edge handle objects in memory. The vulnerability could allow an attacker to detect specific files on the user's computer.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Known

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2016-3351

    Alert Date: May 24, 2022 | 1201 days ago

    7.1

    HIGH
    CVE-2016-4655 - Apple iOS Information Disclosure Vulnerability -

    Action Due Jun 14, 2022 Target Vendor : Apple

    Description : The Apple iOS kernel allows attackers to obtain sensitive information from memory via a crafted application.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2016-4655

    Alert Date: May 24, 2022 | 1201 days ago

    9.3

    HIGH
    CVE-2016-4656 - Apple iOS Memory Corruption Vulnerability -

    Action Due Jun 14, 2022 Target Vendor : Apple

    Description : A memory corruption vulnerability in Apple iOS kernel allows attackers to execute code in a privileged context or cause a denial-of-service (DoS) via a crafted application.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2016-4656

    Alert Date: May 24, 2022 | 1201 days ago

    8.8

    HIGH
    CVE-2016-6366 - Cisco Adaptive Security Appliance (ASA) SNMP Buffer Overflow Vulnerability -

    Action Due Jun 14, 2022 Target Vendor : Cisco

    Description : A buffer overflow vulnerability in the Simple Network Management Protocol (SNMP) code of Cisco ASA software could allow an attacker to cause a reload of the affected system or to remotely execute code.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2016-6366

    Alert Date: May 24, 2022 | 1201 days ago

    7.8

    HIGH
    CVE-2016-6367 - Cisco Adaptive Security Appliance (ASA) CLI Remote Code Execution Vulnerability -

    Action Due Jun 14, 2022 Target Vendor : Cisco

    Description : A vulnerability in the command-line interface (CLI) parser of Cisco ASA software could allow an authenticated, local attacker to create a denial-of-service (DoS) condition or potentially execute code.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2016-6367

    Alert Date: May 24, 2022 | 1201 days ago

    6.5

    MEDIUM
    CVE-2016-3298 - Microsoft Internet Explorer Messaging API Information Disclosure Vulnerability -

    Action Due Jun 14, 2022 Target Vendor : Microsoft

    Description : An information disclosure vulnerability exists when the Microsoft Internet Messaging API improperly handles objects in memory. An attacker who successfully exploited this vulnerability could allow the attacker to test for the presence of files on disk.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2016-3298

    Alert Date: May 24, 2022 | 1201 days ago

    7.8

    HIGH
    CVE-2018-8611 - Microsoft Windows Kernel Privilege Escalation Vulnerability -

    Action Due Jun 14, 2022 Target Vendor : Microsoft

    Description : A privilege escalation vulnerability exists when the Windows kernel fails to properly handle objects in memory.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-8611

    Alert Date: May 24, 2022 | 1201 days ago

    6.1

    MEDIUM
    CVE-2018-19953 - QNAP NAS File Station Cross-Site Scripting Vulnerability -

    Action Due Jun 14, 2022 Target Vendor : QNAP

    Description : A cross-site scripting vulnerability affecting QNAP NAS File Station could allow remote attackers to inject malicious code.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Known

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-19953

    Alert Date: May 24, 2022 | 1201 days ago

    8.8

    HIGH
    CVE-2017-0210 - Microsoft Internet Explorer Privilege Escalation Vulnerability -

    Action Due Jun 14, 2022 Target Vendor : Microsoft

    Description : A privilege escalation vulnerability exists when Internet Explorer does not properly enforce cross-domain policies, which could allow an attacker to access information.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2017-0210

    Alert Date: May 24, 2022 | 1201 days ago

    8.8

    HIGH
    CVE-2016-4657 - Apple iOS Webkit Memory Corruption Vulnerability -

    Action Due Jun 14, 2022 Target Vendor : Apple

    Description : Apple iOS WebKit contains a memory corruption vulnerability that allows attackers to execute remote code or cause a denial-of-service (DoS) via a crafted web site. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rely on WebKit for HTML processing.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2016-4657

    Alert Date: May 24, 2022 | 1201 days ago

    7.8

    HIGH
    CVE-2021-1048 - Android Kernel Use-After-Free Vulnerability -

    Action Due Jun 13, 2022 Target Vendor : Android

    Description : Android kernel contains a use-after-free vulnerability that allows for privilege escalation.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2021-1048

    Alert Date: May 23, 2022 | 1202 days ago

    6.9

    MEDIUM
    CVE-2021-0920 - Android Kernel Race Condition Vulnerability -

    Action Due Jun 13, 2022 Target Vendor : Android

    Description : Android kernel contains a race condition, which allows for a use-after-free vulnerability. Exploitation can allow for privilege escalation.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2021-0920

    Alert Date: May 23, 2022 | 1202 days ago

    7.8

    HIGH
    CVE-2020-1027 - Microsoft Windows Kernel Privilege Escalation Vulnerability -

    Action Due Jun 13, 2022 Target Vendor : Microsoft

    Description : An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2020-1027

    Alert Date: May 23, 2022 | 1202 days ago

    7.8

    HIGH
    CVE-2020-0638 - Microsoft Update Notification Manager Privilege Escalation Vulnerability -

    Action Due Jun 13, 2022 Target Vendor : Microsoft

    Description : Microsoft Update Notification Manager contains an unspecified vulnerability that allows for privilege escalation.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Known

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2020-0638

    Alert Date: May 23, 2022 | 1202 days ago

    7.8

    HIGH
    CVE-2019-7286 - Apple Multiple Products Memory Corruption Vulnerability -

    Action Due Jun 13, 2022 Target Vendor : Apple

    Description : Apple iOS, macOS, watchOS, and tvOS contain a memory corruption vulnerability that could allow for privilege escalation.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2019-7286

    Alert Date: May 23, 2022 | 1202 days ago

    9.3

    HIGH
    CVE-2019-7287 - Apple iOS Memory Corruption Vulnerability -

    Action Due Jun 13, 2022 Target Vendor : Apple

    Description : Apple iOS contains a memory corruption vulnerability which could allow an attacker to perform remote code execution.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2019-7287

    Alert Date: May 23, 2022 | 1202 days ago

    6.5

    MEDIUM
    CVE-2019-0676 - Microsoft Internet Explorer Information Disclosure Vulnerability -

    Action Due Jun 13, 2022 Target Vendor : Microsoft

    Description : An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory. An attacker who successfully exploited this vulnerability could test for the presence of files on disk.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2019-0676

    Alert Date: May 23, 2022 | 1202 days ago
Showing 20 of 1416 Results

Filters