Live CISA KEV Data
CVEs Actively Exploited
in the Wild
Every vulnerability below is confirmed actively exploited by threat actors. CISA mandates federal agencies patch these immediately — your business should too.
1,623Total KEV Entries
21Added Last 30 Days
327Known Ransomware Use
30 Most Recently Added Exploited CVEs
CVE-2026-20253High
Splunk Enterprise Missing Authentication for Critical Function Vulnerability
Splunk — Enterprise
Added to KEV: Jun 18, 2026
Federal patch due: Jun 21, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-48907High
Widget Factory Joomla Content Editor Improper Access Control Vulnerability
Widget Factory — Joomla Content Editor
Added to KEV: Jun 16, 2026
Federal patch due: Jun 19, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-54420High
LiteSpeed cPanel Plugin UNIX Symbolic Link (Symlink) Following Vulnerability
LiteSpeed — cPanel Plugin
Added to KEV: Jun 15, 2026
Federal patch due: Jun 18, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-20262High
Cisco Catalyst SD-WAN Manager Directory or Path Traversal Vulnerability
Cisco — Catalyst SD-WAN Manager
Added to KEV: Jun 15, 2026
Federal patch due: Jun 29, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-35273Critical
Oracle PeopleSoft Enterprise PeopleTools Missing Authentication for Critical Function Vulnerability
Oracle — PeopleSoft Enterprise PeopleTools
Added to KEV: Jun 12, 2026
Federal patch due: Jun 15, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
Ransomware campaign confirmed
CVE-2026-10520High
Ivanti Sentry OS Command Injection Vulnerability
Ivanti — Sentry
Added to KEV: Jun 11, 2026
Federal patch due: Jun 14, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-11645High
Google Chromium V8 Out-of-Bounds Read and Write Vulnerability
Google — Chromium V8
Added to KEV: Jun 9, 2026
Federal patch due: Jun 23, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-7473High
Arista Extensible Operating System Incomplete Comparison with Missing Factors Vulnerability
Arista — Extensible Operating System
Added to KEV: Jun 9, 2026
Federal patch due: Jun 23, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-20245High
Cisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnerability
Cisco — Catalyst SD-WAN Manager
Added to KEV: Jun 9, 2026
Federal patch due: Jun 23, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-42271High
BerriAI LiteLLM Command Injection Vulnerability
BerriAI — LiteLLM
Added to KEV: Jun 8, 2026
Federal patch due: Jun 22, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-50751Critical
Check Point Security Gateway Improper Authentication Vulnerability
Check Point — Security Gateway
Added to KEV: Jun 8, 2026
Federal patch due: Jun 11, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Ransomware campaign confirmed
CVE-2026-28318High
SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability
SolarWinds — Serv-U
Added to KEV: Jun 5, 2026
Federal patch due: Jun 19, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-45247High
Mirasvit Full Page Cache Warmer Deserialization of Untrusted Data Vulnerability
Mirasvit — Mirasvit Full Page Cache Warmer
Added to KEV: Jun 3, 2026
Federal patch due: Jun 6, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2022-0492High
Linux Kernel Improper Authentication Vulnerability
Linux — Kernel
Added to KEV: Jun 2, 2026
Federal patch due: Jun 5, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2025-48595High
Android Framework Integer Overflow Vulnerability
Android — Framework
Added to KEV: Jun 2, 2026
Federal patch due: Jun 5, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2024-21182High
Oracle WebLogic Server Unspecified Vulnerability
Oracle — WebLogic Server
Added to KEV: Jun 1, 2026
Federal patch due: Jun 4, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-0257High
Palo Alto Networks PAN-OS Authentication Bypass Vulnerability
Palo Alto Networks — PAN-OS
Added to KEV: May 29, 2026
Federal patch due: Jun 1, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-48027Critical
Nx Console Embedded Malicious Code Vulnerability
Nx — Nx Console
Added to KEV: May 27, 2026
Federal patch due: Jun 10, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Ransomware campaign confirmed
CVE-2026-45321Critical
TanStack Unspecified Vulnerability
TanStack — TanStack
Added to KEV: May 27, 2026
Federal patch due: Jun 10, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Ransomware campaign confirmed
CVE-2026-8398High
Daemon Tools Lite Embedded Malicious Code Vulnerability
Daemon — Daemon Tools Lite
Added to KEV: May 27, 2026
Federal patch due: May 30, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-48172High
LiteSpeed cPanel Plugin Privilege Escalation Vulnerability
LiteSpeed — cPanel Plugin
Added to KEV: May 26, 2026
Federal patch due: May 29, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-9082High
Drupal Core SQL Injection Vulnerability
Drupal — Core
Added to KEV: May 22, 2026
Federal patch due: May 27, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2025-34291High
Langflow Origin Validation Error Vulnerability
Langflow — Langflow
Added to KEV: May 21, 2026
Federal patch due: Jun 4, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-34926High
Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability
Trend Micro — Apex One
Added to KEV: May 21, 2026
Federal patch due: Jun 4, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2008-4250High
Microsoft Windows Buffer Overflow Vulnerability
Microsoft — Windows
Added to KEV: May 20, 2026
Federal patch due: Jun 3, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2009-1537High
Microsoft DirectX NULL Byte Overwrite Vulnerability
Microsoft — DirectX
Added to KEV: May 20, 2026
Federal patch due: Jun 3, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2009-3459High
Adobe Acrobat and Reader Heap-Based Buffer Overflow Vulnerability
Adobe — Acrobat and Reader
Added to KEV: May 20, 2026
Federal patch due: Jun 3, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2010-0249High
Microsoft Internet Explorer Use-After-Free Vulnerability
Microsoft — Internet Explorer
Added to KEV: May 20, 2026
Federal patch due: Jun 3, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2010-0806High
Microsoft Internet Explorer Use-After-Free Vulnerability
Microsoft — Internet Explorer
Added to KEV: May 20, 2026
Federal patch due: Jun 3, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-41091High
Microsoft Defender Link Following Vulnerability
Microsoft — Defender
Added to KEV: May 20, 2026
Federal patch due: Jun 3, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Are these vulnerabilities patched in your environment?
Zero Day IT delivers continuous patch management and vulnerability remediation so your business stays ahead of active exploits — not behind them.
Talk to Us About Patch Management →