CISA Known Exploited Vulnerabilities (KEV)

Threat Intelligence

CISA's Known Exploited Vulnerabilities (KEV) catalog lists vulnerabilities actively used in real-world attacks. CVEFeed.io tracks the latest additions so you can prioritize remediation as new entries are published.

7.2

HIGH

CVE-2020-8260 - Ivanti Pulse Connect Secure Code Execution Vulnerability -

Action Due May 03, 2022 Target Vendor : Ivanti

Description :Pulse Connect Secure contains an unspecified vulnerability that allows an authenticated attacker to perform code execution using uncontrolled gzip extraction.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :Reference CISA's ED 21-03 (https://www.cisa.gov/news-events/directives/ed-21-03-mitigate-pulse-connect-secure-product-vulnerabilities) for further guidance and requirements. Note: The due date for addressing this vulnerability aligns with the requirements outlined in ED 21-03. https://nvd.nist.gov/vuln/detail/CVE-2020-8260

Alert Date: Nov 03, 2021 | 1690 days ago

9.8

CRITICAL

CVE-2018-6789 - Exim Buffer Overflow Vulnerability -

Action Due May 03, 2022 Target Vendor : Exim

Description :Exim contains a buffer overflow vulnerability in the base64d function part of the SMTP listener that may allow for remote code execution.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Known Detected Nov 03, 2021

Notes :https://nvd.nist.gov/vuln/detail/CVE-2018-6789

Alert Date: Nov 03, 2021 | 1690 days ago

7.8

HIGH

CVE-2019-0803 - Microsoft Win32k Privilege Escalation Vulnerability -

Action Due May 03, 2022 Target Vendor : Microsoft

Description :Microsoft Win32k contains an unspecified vulnerability due to it failing to properly handle objects in memory causing privilege escalation. Successful exploitation allows an attacker to run code in kernel mode.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2019-0803

Alert Date: Nov 03, 2021 | 1690 days ago

8.8

HIGH

CVE-2021-21220 - Google Chromium V8 Improper Input Validation Vulnerability -

Action Due Nov 17, 2021 Target Vendor : Google

Description :Google Chromium V8 Engine contains an improper input validation vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2021-21220

Alert Date: Nov 03, 2021 | 1690 days ago

9.1

CRITICAL

CVE-2020-4428 - IBM Data Risk Manager Remote Code Execution Vulnerability -

Action Due May 03, 2022 Target Vendor : IBM

Description :IBM Data Risk Manager contains an unspecified vulnerability which could allow a remote, authenticated attacker to execute commands on the system.�

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2020-4428

Alert Date: Nov 03, 2021 | 1690 days ago

10.0

CRITICAL

CVE-2019-4716 - IBM Planning Analytics Remote Code Execution Vulnerability -

Action Due May 03, 2022 Target Vendor : IBM

Description :IBM Planning Analytics is vulnerable to a configuration overwrite that allows an unauthenticated user to login as "admin", and then execute code as root or SYSTEM via TM1 scripting.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2019-4716

Alert Date: Nov 03, 2021 | 1690 days ago

5.8

MEDIUM

CVE-2016-3715 - ImageMagick Arbitrary File Deletion Vulnerability -

Action Due May 03, 2022 Target Vendor : ImageMagick

Description :ImageMagick contains an unspecified vulnerability that could allow users to delete files by using ImageMagick's 'ephemeral' pseudo protocol, which deletes files after reading.

Action :Apply updates per vendor instructions.

Known To Be Used in Ransomware Campaigns? : Unknown

Notes :https://nvd.nist.gov/vuln/detail/CVE-2016-3715

Alert Date: Nov 03, 2021 | 1690 days ago

Showing 20 of 1627 Results

Filters

What are you looking for ?

Date Added

Ransomware

Sort By

Browse by Apps

CISA Known Exploited Vulnerabilities (KEV)

7.2

CVE-2020-8260 - Ivanti Pulse Connect Secure Code Execution Vulnerability -

9.8

CVE-2018-6789 - Exim Buffer Overflow Vulnerability -

7.8

CVE-2019-0803 - Microsoft Win32k Privilege Escalation Vulnerability -

8.8

CVE-2021-21220 - Google Chromium V8 Improper Input Validation Vulnerability -

9.1

CVE-2020-4428 - IBM Data Risk Manager Remote Code Execution Vulnerability -

10.0

CVE-2019-4716 - IBM Planning Analytics Remote Code Execution Vulnerability -

5.8

CVE-2016-3715 - ImageMagick Arbitrary File Deletion Vulnerability -

Filters

Cookie Preferences