Known Exploited Vulnerabilities Catalog

For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild. Organizations should use the KEV catalog as an input to their vulnerability management prioritization framework.

How to use the KEV Catalog

The KEV catalog is also available in these formats:

CSV
JSON
JSON Schema (updated 06-25-2024)
Print View
License

Unitronics | Vision PLC and HMI

CVE-2023-6448

Unitronics Vision PLC and HMI Insecure Default Password Vulnerability: Unitronics Vision Series PLCs and HMIs ship with an insecure default password, which if left unchanged, can allow attackers to execute remote commands.

Related CWE: CWE-1188

Known To Be Used in Ransomware Campaigns? Unknown

Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Date Added: 2023-12-11
Due Date: 2023-12-18

Additional Notes

Realtek | SDK

CVE-2014-8361

Realtek SDK Improper Input Validation Vulnerability: Realtek SDK contains an improper input validation vulnerability in the miniigd SOAP service that allows remote attackers to execute malicious code via a crafted NewInternalClient request.

Related CWE: CWE-20

Known To Be Used in Ransomware Campaigns? Unknown

Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Date Added: 2023-09-18
Due Date: 2023-10-09

Additional Notes

Realtek | Jungle Software Development Kit (SDK)

CVE-2021-35394

Realtek Jungle SDK Remote Code Execution Vulnerability: RealTek Jungle SDK contains multiple memory corruption vulnerabilities which can allow an attacker to perform remote code execution.

Related CWEs: CWE-78| CWE-138

Known To Be Used in Ransomware Campaigns? Unknown

Action: Apply updates per vendor instructions.

Date Added: 2021-12-10
Due Date: 2021-12-24

Additional Notes

DotNetNuke (DNN) | DotNetNuke (DNN)

CVE-2018-15811

DotNetNuke (DNN) Inadequate Encryption Strength Vulnerability: DotNetNuke (DNN) contains an inadequate encryption strength vulnerability resulting from the use of a weak encryption algorithm to protect input parameters.

Related CWE: CWE-326

Known To Be Used in Ransomware Campaigns? Unknown

Action: Apply updates per vendor instructions.

Date Added: 2021-11-03
Due Date: 2022-05-03

Additional Notes

DotNetNuke (DNN) | DotNetNuke (DNN)

CVE-2018-18325

Related CWE: CWE-326

Known To Be Used in Ransomware Campaigns? Unknown

Action: Apply updates per vendor instructions.

Date Added: 2021-11-03
Due Date: 2022-05-03

Additional Notes

DotNetNuke (DNN) | DotNetNuke (DNN)

CVE-2017-9822

DotNetNuke (DNN) Remote Code Execution Vulnerability: DotNetNuke (DNN) contains a vulnerability that may allow for remote code execution via cookie deserialization.

Related CWE: CWE-20

Known To Be Used in Ransomware Campaigns? Known

Action: Apply updates per vendor instructions.

Date Added: 2021-11-03
Due Date: 2022-05-03

Additional Notes

Realtek | AP-Router SDK

CVE-2021-35395

Realtek AP-Router SDK Buffer Overflow Vulnerability: Realtek AP-Router SDK HTTP web server boa contains a buffer overflow vulnerability due to unsafe copies of some overly long parameters submitted in the form that lead to denial-of-service (DoS).

Related CWEs: CWE-20| CWE-122

Known To Be Used in Ransomware Campaigns? Unknown

Action: Apply updates per vendor instructions.

Date Added: 2021-11-03
Due Date: 2021-11-17

Additional Notes

Known Exploited Vulnerabilities Catalog

CVE-2023-6448

CVE-2014-8361

CVE-2021-35394

CVE-2018-15811

CVE-2018-18325

CVE-2017-9822

CVE-2021-35395

Subscribe to the KEV Catalog Updates