CISA Known Exploited Vulnerabilities (KEV)

For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild. Organizations should use the KEV catalog as an input to their vulnerability management prioritization framework.Y

10.0

CRITICAL

CVE-2022-20700 - Cisco Small Business RV Series Routers Stack-based Buffer Overflow Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Cisco

Description : A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2022-20700

Alert Date: Mar 03, 2022 | 1283 days ago

10.0

CRITICAL

CVE-2022-20699 - Cisco Small Business RV Series Routers Stack-based Buffer Overflow Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Cisco

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2022-20699

Alert Date: Mar 03, 2022 | 1283 days ago

7.8

HIGH

CVE-2021-41379 - Microsoft Windows Installer Privilege Escalation Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Microsoft

Description : Microsoft Windows Installer contains an unspecified vulnerability that allows for privilege escalation.

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Known

Notes : https://nvd.nist.gov/vuln/detail/CVE-2021-41379

Alert Date: Mar 03, 2022 | 1283 days ago

9.8

CRITICAL

CVE-2020-1938 - Apache Tomcat Improper Privilege Management Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Apache

Description : Apache Tomcat treats Apache JServ Protocol (AJP) connections as having higher trust than, for example, a similar HTTP connection. If such connections are available to an attacker, they can be exploited.

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2020-1938

Alert Date: Mar 03, 2022 | 1283 days ago

5.4

MEDIUM

CVE-2020-11899 - Treck TCP/IP stack Out-of-Bounds Read Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Treck TCP/IP stack

Description : The Treck TCP/IP stack contains an IPv6 out-of-bounds read vulnerability.

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2020-11899

Alert Date: Mar 03, 2022 | 1283 days ago

9.8

CRITICAL

CVE-2019-16928 - Exim Out-of-bounds Write Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Exim

Description : Exim contains an out-of-bounds write vulnerability which can allow for remote code execution.

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2019-16928

Alert Date: Mar 03, 2022 | 1283 days ago

9.0

HIGH

CVE-2019-1652 - Cisco Small Business Routers Improper Input Validation Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Cisco

Description : A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands.

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2019-1652

Alert Date: Mar 03, 2022 | 1283 days ago

9.3

HIGH

CVE-2019-1297 - Microsoft Excel Remote Code Execution Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Microsoft

Description : A remote code execution vulnerability exists in Microsoft Excel when the software fails to properly handle objects in memory.

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2019-1297

Alert Date: Mar 03, 2022 | 1283 days ago

7.4

HIGH

CVE-2018-8581 - Microsoft Exchange Server Privilege Escalation Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Microsoft

Description : A privilege escalation vulnerability exists in Microsoft Exchange Server. An attacker who successfully exploited this vulnerability could attempt to impersonate any other user of the Exchange server.

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Known

Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-8581

Alert Date: Mar 03, 2022 | 1283 days ago

7.6

HIGH

CVE-2018-8298 - ChakraCore Scripting Engine Type Confusion Vulnerability -

Action Due Mar 17, 2022 Target Vendor : ChakraCore

Description : The ChakraCore scripting engine contains a type confusion vulnerability which can allow for remote code execution.

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-8298

Alert Date: Mar 03, 2022 | 1283 days ago

7.1

HIGH

CVE-2018-0180 - Cisco IOS Software Denial-of-Service Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Cisco

Description : A vulnerability in the Login Enhancements (Login Block) feature of Cisco IOS Software could allow an unauthenticated, remote attacker to trigger a reload of an affected system, resulting in a denial of service (DoS) condition.

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-0180

Alert Date: Mar 03, 2022 | 1283 days ago

7.1

HIGH

CVE-2018-0179 - Cisco IOS Software Denial-of-Service Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Cisco

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-0179

Alert Date: Mar 03, 2022 | 1283 days ago

8.6

HIGH

CVE-2018-0174 - Cisco IOS Software and Cisco IOS XE Software Improper Input Validation Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Cisco

Description : A vulnerability in the DHCP option 82 encapsulation functionality of Cisco IOS Software and Cisco IOS XE Software could allow for denial-of-service (DoS).

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-0174

Alert Date: Mar 03, 2022 | 1283 days ago

8.6

HIGH

CVE-2018-0173 - Cisco IOS and IOS XE Software Improper Input Validation Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Cisco

Description : A vulnerability in the Cisco IOS Software and Cisco IOS XE Software function that restores encapsulated option 82 information in DHCP Version 4 (DHCPv4) packets can allow for denial-of-service (DoS).

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-0173

Alert Date: Mar 03, 2022 | 1283 days ago

8.6

HIGH

CVE-2018-0172 - Cisco IOS and IOS XE Software Improper Input Validation Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Cisco

Description : A vulnerability in the DHCP option 82 encapsulation functionality of Cisco IOS Software and Cisco IOS XE Software could allow for denial-of-service (DoS).

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-0172

Alert Date: Mar 03, 2022 | 1283 days ago

8.8

HIGH

CVE-2018-0167 - Cisco IOS, XR, and XE Software Buffer Overflow Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Cisco

Description : There is a buffer overflow vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software which could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition or execute arbitrary code.

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-0167

Alert Date: Mar 03, 2022 | 1283 days ago

6.3

MEDIUM

CVE-2018-0161 - Cisco IOS Software Resource Management Errors Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Cisco

Description : A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS Software running on certain models of Cisco Catalyst Switches could allow an authenticated, remote attacker to cause a denial-of-service (DoS) condition.

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-0161

Alert Date: Mar 03, 2022 | 1283 days ago

8.6

HIGH

CVE-2018-0158 - Cisco IOS and XE Software Internet Key Exchange Memory Leak Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Cisco

Description : A vulnerability in the implementation of Internet Key Exchange Version 1 (IKEv1) functionality in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial-of-service (DoS) condition.

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-0158

Alert Date: Mar 03, 2022 | 1283 days ago

7.8

HIGH

CVE-2018-0156 - Cisco IOS Software and Cisco IOS XE Software Smart Install Denial-of-Service Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Cisco

Description : A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial-of-service (DoS) condition.

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-0156

Alert Date: Mar 03, 2022 | 1283 days ago

8.6

HIGH

CVE-2018-0155 - Cisco Catalyst Bidirectional Forwarding Detection Denial-of-Service Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Cisco

Description : A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated, remote attacker to cause a crash of the iosd process, causing a denial-of-service (DoS) condition.

Action : Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes : https://nvd.nist.gov/vuln/detail/CVE-2018-0155

Alert Date: Mar 03, 2022 | 1283 days ago

Showing 20 of 1416 Results

Filters

What are you looking for ?

Date Added

Sort By

Browse by Apps

CISA Known Exploited Vulnerabilities (KEV)

10.0

10.0

7.8

9.8

5.4

9.8

9.0

9.3

7.4

7.6

7.1

7.1

8.6

8.6

8.6

8.8

6.3

8.6

7.8

8.6

Filters

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable