CISA Known Exploited Vulnerabilities Catalog

For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild. Organizations should use the KEV catalog as an input to their vulnerability management prioritization framework.Y

    9.8

    CVSS31
    CVE-2017-6316 - Citrix Multiple Products Remote Code Execution Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : Citrix

    Description : A vulnerability has been identified in the management interface of Citrix NetScaler SD-WAN Enterprise and Standard Edition and Citrix CloudBridge Virtual WAN Edition that could result in an unauthenticated, remote attacker being able to execute arbitrary code as a root user. This vulnerability also affects XenMobile Server.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2017-6316

    Alert Date: Mar 25, 2022 | 1208 days ago

    9.8

    CVSS31
    CVE-2017-3881 - Cisco IOS and IOS XE Remote Code Execution Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : Cisco

    Description : A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device or remotely execute code with elevated privileges.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2017-3881

    Alert Date: Mar 25, 2022 | 1208 days ago

    8.1

    CVSS31
    CVE-2017-12617 - Apache Tomcat Remote Code Execution Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : Apache

    Description : When running Apache Tomcat, it is possible to upload a JSP file to the server via a specially crafted request. This JSP could then be requested and any code it contained would be executed by the server.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2017-12617

    Alert Date: Mar 25, 2022 | 1208 days ago

    8.8

    CVSS31
    CVE-2017-0146 - Microsoft Windows SMB Remote Code Execution Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : Microsoft

    Description : The SMBv1 server in Microsoft Windows allows remote attackers to perform remote code execution.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Known

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2017-0146

    Alert Date: Mar 25, 2022 | 1208 days ago

    8.8

    CVSS31
    CVE-2016-7892 - Adobe Flash Player Use-After-Free Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : Adobe

    Description : Adobe Flash Player has an exploitable use-after-free vulnerability in the TextField class.

    Action : The impacted product is end-of-life and should be disconnected if still in use.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2016-7892

    Alert Date: Mar 25, 2022 | 1208 days ago

    9.8

    CVSS31
    CVE-2016-4171 - Adobe Flash Player Remote Code Execution Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : Adobe

    Description : Unspecified vulnerability in Adobe Flash Player allows for remote code execution.

    Action : The impacted product is end-of-life and should be disconnected if still in use.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2016-4171

    Alert Date: Mar 25, 2022 | 1208 days ago

    9.8

    CVSS31
    CVE-2016-1555 - NETGEAR Multiple WAP Devices Command Injection Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : NETGEAR

    Description : Multiple NETGEAR Wireless Access Point devices allows unauthenticated web pages to pass form input directly to the command-line interface. Exploitation allows for arbitrary code execution.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2016-1555

    Alert Date: Mar 25, 2022 | 1208 days ago

    7.2

    CVSS31
    CVE-2016-11021 - D-Link DCS-930L Devices OS Command Injection Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : D-Link

    Description : setSystemCommand on D-Link DCS-930L devices allows a remote attacker to execute code via an OS command.

    Action : The impacted product is end-of-life and should be disconnected if still in use.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2016-11021

    Alert Date: Mar 25, 2022 | 1208 days ago

    9.8

    CVSS31
    CVE-2016-10174 - NETGEAR WNR2000v5 Router Buffer Overflow Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : NETGEAR

    Description : The NETGEAR WNR2000v5 router contains a buffer overflow which can be exploited to achieve remote code execution.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2016-10174

    Alert Date: Mar 25, 2022 | 1208 days ago

    9.1

    CVSS31
    CVE-2015-4068 - Arcserve Unified Data Protection (UDP) Directory Traversal Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : Arcserve

    Description : Directory traversal vulnerability in Arcserve UDP allows remote attackers to obtain sensitive information or cause a denial of service.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2015-4068

    Alert Date: Mar 25, 2022 | 1208 days ago

    7.5

    CVSS31
    CVE-2015-3035 - TP-Link Multiple Archer Devices Directory Traversal Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : TP-Link

    Description : Directory traversal vulnerability in multiple TP-Link Archer devices allows remote attackers to read arbitrary files via a .. (dot dot) in the PATH_INFO to login/.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2015-3035

    Alert Date: Mar 25, 2022 | 1208 days ago

    9.8

    CVSS31
    CVE-2015-1427 - Elasticsearch Groovy Scripting Engine Remote Code Execution Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : Elastic

    Description : The Groovy scripting engine in Elasticsearch allows remote attackers to bypass the sandbox protection mechanism and execute arbitrary shell commands.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2015-1427

    Alert Date: Mar 25, 2022 | 1208 days ago

    9.8

    CVSS31
    CVE-2015-1187 - D-Link and TRENDnet Multiple Devices Remote Code Execution Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : D-Link and TRENDnet

    Description : The ping tool in multiple D-Link and TRENDnet devices allow remote attackers to perform remote code execution.

    Action : The impacted product is end-of-life and should be disconnected if still in use.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2015-1187

    Alert Date: Mar 25, 2022 | 1208 days ago

    8.8

    CVSS31
    CVE-2014-6332 - Microsoft Windows Object Linking & Embedding (OLE) Automation Array Remote Code Execution Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : Microsoft

    Description : OleAut32.dll in OLE in Microsoft Windows allows remote attackers to remotely execute code via a crafted web site.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2014-6332

    Alert Date: Mar 25, 2022 | 1208 days ago

    8.8

    CVSS31
    CVE-2014-6324 - Microsoft Kerberos Key Distribution Center (KDC) Privilege Escalation Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : Microsoft

    Description : The Kerberos Key Distribution Center (KDC) in Microsoft allows remote authenticated domain users to obtain domain administrator privileges.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2014-6324

    Alert Date: Mar 25, 2022 | 1208 days ago

    9.8

    CVSS31
    CVE-2014-6287 - Rejetto HTTP File Server (HFS) Remote Code Execution Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : Rejetto

    Description : The findMacroMarker function in parserLib.pas in Rejetto HTTP File Server (HFS or HttpFileServer) allows remote attackers to execute arbitrary programs.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2014-6287

    Alert Date: Mar 25, 2022 | 1208 days ago

    8.1

    CVSS31
    CVE-2014-3120 - Elasticsearch Remote Code Execution Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : Elastic

    Description : Elasticsearch enables dynamic scripting, which allows remote attackers to execute arbitrary MVEL expressions and Java code.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2014-3120

    Alert Date: Mar 25, 2022 | 1208 days ago

    7.5

    CVSS31
    CVE-2014-0130 - Ruby on Rails Directory Traversal Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : Rails

    Description : Directory traversal vulnerability in actionpack/lib/abstract_controller/base.rb in the implicit-render implementation in Ruby on Rails allows remote attackers to read arbitrary files via a crafted request.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2014-0130

    Alert Date: Mar 25, 2022 | 1208 days ago

    5.4

    CVSS31
    CVE-2013-5223 - D-Link DSL-2760U Gateway Cross-Site Scripting Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : D-Link

    Description : A cross-site scripting (XSS) vulnerability exists in the D-Link DSL-2760U gateway, allowing remote authenticated users to inject arbitrary web script or HTML.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2013-5223

    Alert Date: Mar 25, 2022 | 1208 days ago

    9.8

    CVSS31
    CVE-2013-2251 - Apache Struts Improper Input Validation Vulnerability -

    Action Due Apr 15, 2022 Target Vendor : Apache

    Description : Apache Struts allows remote attackers to execute arbitrary Object-Graph Navigation Language (OGNL) expressions.

    Action : Apply updates per vendor instructions.

    Known To Be Used in Ransomware Campaigns? : Unknown

    Notes : https://nvd.nist.gov/vuln/detail/CVE-2013-2251

    Alert Date: Mar 25, 2022 | 1208 days ago
Showing 20 of 1383 Results

Filters

© cvefeed.io
Latest DB Update: Jul. 15, 2025 16:41