CISA Known Exploited Vulnerabilities (KEV)

CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilities actively used in real-world attacks. CVEFeed.io tracks the latest additions so you can prioritize remediation as new entries are published.

7.8

HIGH

CVE-2017-0001 - Microsoft Graphics Device Interface (GDI) Privilege Escalation Vulnerability -

Action Due Mar 24, 2022 Target Vendor : Microsoft

Description :The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows local users to gain privileges

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2017-0001

Alert Date: Mar 03, 2022 | 1465 days ago

9.3

HIGH

CVE-2014-4114 - Microsoft Windows Object Linking & Embedding (OLE) Remote Code Execution Vulnerability -

Action Due Mar 24, 2022 Target Vendor : Microsoft

Description :A vulnerability exists in Windows Object Linking & Embedding (OLE) that could allow remote code execution if a user opens a file that contains a specially crafted OLE object.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2014-4114

Alert Date: Mar 03, 2022 | 1465 days ago

7.8

HIGH

CVE-2021-41379 - Microsoft Windows Installer Privilege Escalation Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Microsoft

Description :Microsoft Windows Installer contains an unspecified vulnerability that allows for privilege escalation.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Known Detected Mar 03, 2022

Notes :https://nvd.nist.gov/vuln/detail/CVE-2021-41379

Alert Date: Mar 03, 2022 | 1465 days ago

7.4

HIGH

CVE-2018-8581 - Microsoft Exchange Server Privilege Escalation Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Microsoft

Description :A privilege escalation vulnerability exists in Microsoft Exchange Server. An attacker who successfully exploited this vulnerability could attempt to impersonate any other user of the Exchange server.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Known Detected Mar 03, 2022

Notes :https://nvd.nist.gov/vuln/detail/CVE-2018-8581

Alert Date: Mar 03, 2022 | 1465 days ago

10.0

HIGH

CVE-2016-1019 - Adobe Flash Player Arbitrary Code Execution Vulnerability -

Action Due Mar 24, 2022 Target Vendor : Adobe

Description :Adobe Flash Player allows remote attackers to cause a denial of service or possibly execute arbitrary code.

Action :The impacted product is end-of-life and should be disconnected if still in use.

Known To Be Used in Ransomware Campaigns? : Known Detected Mar 03, 2022

Notes :https://nvd.nist.gov/vuln/detail/CVE-2016-1019

Alert Date: Mar 03, 2022 | 1465 days ago

7.8

HIGH

CVE-2016-0099 - Microsoft Windows Secondary Logon Service Privilege Escalation Vulnerability -

Action Due Mar 24, 2022 Target Vendor : Microsoft

Description :A privilege escalation vulnerability exists in Microsoft Windows if the Windows Secondary Logon Service fails to properly manage request handles in memory. An attacker who successfully exploited this vulnerability could run arbitrary code as an administrator.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Known Detected Mar 03, 2022

Notes :https://nvd.nist.gov/vuln/detail/CVE-2016-0099

Alert Date: Mar 03, 2022 | 1465 days ago

10.0

CRITICAL

CVE-2022-20708 - Cisco Small Business RV Series Routers Stack-based Buffer Overflow Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Cisco

Description :A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2022-20708

Alert Date: Mar 03, 2022 | 1465 days ago

8.6

HIGH

CVE-2018-0155 - Cisco Catalyst Bidirectional Forwarding Detection Denial-of-Service Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Cisco

Description :A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated, remote attacker to cause a crash of the iosd process, causing a denial-of-service (DoS) condition.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2018-0155

Alert Date: Mar 03, 2022 | 1465 days ago

7.1

HIGH

CVE-2017-12319 - Cisco IOS XE Software Ethernet Virtual Private Network Border Gateway Protocol Denial-of-Service Vulnerability -

Action Due Mar 24, 2022 Target Vendor : Cisco

Description :A vulnerability in the Border Gateway Protocol (BGP) over an Ethernet Virtual Private Network (EVPN) for Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload, resulting in a denial of service (DoS) condition, or potentially corrupt the BGP routing table, which could result in network instability.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2017-12319

Alert Date: Mar 03, 2022 | 1465 days ago

10.0

HIGH

CVE-2017-12240 - Cisco IOS and IOS XE Software DHCP Remote Code Execution Vulnerability -

Action Due Mar 24, 2022 Target Vendor : Cisco

Description :The Dynamic Host Configuration Protocol (DHCP) relay subsystem of Cisco IOS and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code and gain full control of an affected system.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2017-12240

Alert Date: Mar 03, 2022 | 1465 days ago

7.8

HIGH

CVE-2015-2387 - Microsoft ATM Font Driver Privilege Escalation Vulnerability -

Action Due Mar 24, 2022 Target Vendor : Microsoft

Description :ATMFD.DLL in the Adobe Type Manager Font Driver in Microsoft Windows Server allows local users to gain privileges via a crafted application.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2015-2387

Alert Date: Mar 03, 2022 | 1465 days ago

10.0

CRITICAL

CVE-2022-20701 - Cisco Small Business RV Series Routers Stack-based Buffer Overflow Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Cisco

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2022-20701

Alert Date: Mar 03, 2022 | 1465 days ago

9.0

HIGH

CVE-2017-6740 - Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability -

Action Due Mar 24, 2022 Target Vendor : Cisco

Description :The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2017-6740

Alert Date: Mar 03, 2022 | 1465 days ago

9.3

HIGH

CVE-2010-3333 - Microsoft Office Stack-based Buffer Overflow Vulnerability -

Action Due Mar 24, 2022 Target Vendor : Microsoft

Description :A stack-based buffer overflow vulnerability exists in the parsing of RTF data in Microsoft Office and earlier allows an attacker to perform remote code execution.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2010-3333

Alert Date: Mar 03, 2022 | 1465 days ago

10.0

HIGH

CVE-2015-2590 - Oracle Java SE and Java SE Embedded Remote Code Execution Vulnerability -

Action Due Mar 24, 2022 Target Vendor : Oracle

Description :An unspecified vulnerability exists within Oracle Java Runtime Environment that allows an attacker to perform remote code execution.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2015-2590

Alert Date: Mar 03, 2022 | 1465 days ago

7.8

HIGH

CVE-2013-5065 - Microsoft Windows Kernel Privilege Escalation Vulnerability -

Action Due Mar 24, 2022 Target Vendor : Microsoft

Description :Microsoft Windows NDProxy.sys in the kernel contains an improper input validation vulnerability which can allow a local attacker to escalate privileges.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2013-5065

Alert Date: Mar 03, 2022 | 1465 days ago

10.0

CRITICAL

CVE-2022-20699 - Cisco Small Business RV Series Routers Stack-based Buffer Overflow Vulnerability -

Action Due Mar 17, 2022 Target Vendor : Cisco

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2022-20699

Alert Date: Mar 03, 2022 | 1465 days ago

9.3

HIGH

CVE-2017-8570 - Microsoft Office Remote Code Execution Vulnerability -

Action Due Aug 25, 2022 Target Vendor : Microsoft

Description :A remote code execution vulnerability exists in Microsoft Office software when it fails to properly handle objects in memory.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2017-8570

Alert Date: Feb 25, 2022 | 1471 days ago

8.8

HIGH

CVE-2017-0222 - Microsoft Internet Explorer Remote Code Execution Vulnerability -

Action Due Aug 25, 2022 Target Vendor : Microsoft

Description :A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2017-0222

Alert Date: Feb 25, 2022 | 1471 days ago

9.3

HIGH

CVE-2014-6352 - Microsoft Windows Code Injection Vulnerability -

Action Due Aug 25, 2022 Target Vendor : Microsoft

Description :Microsoft Windows allow remote attackers to execute arbitrary code via a crafted OLE object.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2014-6352

Alert Date: Feb 25, 2022 | 1471 days ago

Showing 20 of 1540 Results

Filters

What are you looking for ?

Date Added

Ransomware

Sort By

Browse by Apps

CISA Known Exploited Vulnerabilities (KEV)

7.8

9.3

7.8

7.4

10.0

7.8

10.0

8.6

7.1

10.0

7.8

10.0

9.0

9.3

10.0

7.8

10.0

9.3

8.8

9.3

Filters

CVEFeed.io UI Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable

Cookie Preferences