Live CISA KEV Data
CVEs Actively Exploited
in the Wild
Every vulnerability below is confirmed actively exploited by threat actors. CISA mandates federal agencies patch these immediately — your business should too.
1,635Total KEV Entries
18Added Last 30 Days
329Known Ransomware Use
30 Most Recently Added Exploited CVEs
CVE-2026-48908High
JoomShaper SP Page Builder Unrestricted Upload of File with Dangerous Type Vulnerability
JoomShaper — SP Page Builder
Added to KEV: Jul 7, 2026
Federal patch due: Jul 10, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-55255High
Langflow Authorization Bypass Through User-Controlled Key Vulnerability
Langflow — Langflow
Added to KEV: Jul 7, 2026
Federal patch due: Jul 10, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-56290High
Joomlack Page Builder Improper Access Control Vulnerability
Joomlack — Page Builder
Added to KEV: Jul 7, 2026
Federal patch due: Jul 10, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-48282High
Adobe ColdFusion Path Traversal Vulnerability
Adobe — ColdFusion
Added to KEV: Jul 7, 2026
Federal patch due: Jul 10, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-45659High
Microsoft SharePoint Server Deserialization of Untrusted Data Vulnerability
Microsoft — SharePoint Server
Added to KEV: Jul 1, 2026
Federal patch due: Jul 4, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-48558High
SimpleHelp Authentication Bypass Vulnerability
SimpleHelp — SimpleHelp
Added to KEV: Jun 29, 2026
Federal patch due: Jul 2, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-12569High
PTC Windchill and FlexPLM Improper Input Validation Vulnerability
PTC — Windchill and FlexPLM
Added to KEV: Jun 25, 2026
Federal patch due: Jun 28, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-20230High
Cisco Unified Communications Manager Server-Side Request Forgery (SSRF) Vulnerability
Cisco — Unified Communications Manager
Added to KEV: Jun 25, 2026
Federal patch due: Jun 28, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2025-67038High
Lantronix EDS5000 Code Injection Vulnerability
Lantronix — EDS5000
Added to KEV: Jun 23, 2026
Federal patch due: Jun 26, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-34910High
Ubiquiti UniFi OS Improper Input Validation Vulnerability
Ubiquiti — UniFi OS
Added to KEV: Jun 23, 2026
Federal patch due: Jun 26, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-34909High
Ubiquiti UniFi OS Path Traversal Vulnerability
Ubiquiti — UniFi OS
Added to KEV: Jun 23, 2026
Federal patch due: Jun 26, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-34908High
Ubiquiti UniFi OS Improper Access Control Vulnerability
Ubiquiti — UniFi OS
Added to KEV: Jun 23, 2026
Federal patch due: Jun 26, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-20253High
Splunk Enterprise Missing Authentication for Critical Function Vulnerability
Splunk — Enterprise
Added to KEV: Jun 18, 2026
Federal patch due: Jun 21, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-48907High
Widget Factory Joomla Content Editor Improper Access Control Vulnerability
Widget Factory — Joomla Content Editor
Added to KEV: Jun 16, 2026
Federal patch due: Jun 19, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-54420High
LiteSpeed cPanel Plugin UNIX Symbolic Link (Symlink) Following Vulnerability
LiteSpeed — cPanel Plugin
Added to KEV: Jun 15, 2026
Federal patch due: Jun 18, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-20262High
Cisco Catalyst SD-WAN Manager Directory or Path Traversal Vulnerability
Cisco — Catalyst SD-WAN Manager
Added to KEV: Jun 15, 2026
Federal patch due: Jun 29, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-35273Critical
Oracle PeopleSoft Enterprise PeopleTools Missing Authentication for Critical Function Vulnerability
Oracle — PeopleSoft Enterprise PeopleTools
Added to KEV: Jun 12, 2026
Federal patch due: Jun 15, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
Ransomware campaign confirmed
CVE-2026-10520High
Ivanti Sentry OS Command Injection Vulnerability
Ivanti — Sentry
Added to KEV: Jun 11, 2026
Federal patch due: Jun 14, 2026
Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
CVE-2026-11645High
Google Chromium V8 Out-of-Bounds Read and Write Vulnerability
Google — Chromium V8
Added to KEV: Jun 9, 2026
Federal patch due: Jun 23, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-7473High
Arista Extensible Operating System Incomplete Comparison with Missing Factors Vulnerability
Arista — Extensible Operating System
Added to KEV: Jun 9, 2026
Federal patch due: Jun 23, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-20245High
Cisco Catalyst SD-WAN Manager Improper Encoding or Escaping of Output Vulnerability
Cisco — Catalyst SD-WAN Manager
Added to KEV: Jun 9, 2026
Federal patch due: Jun 23, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-42271High
BerriAI LiteLLM Command Injection Vulnerability
BerriAI — LiteLLM
Added to KEV: Jun 8, 2026
Federal patch due: Jun 22, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-50751Critical
Check Point Security Gateway Improper Authentication Vulnerability
Check Point — Security Gateway
Added to KEV: Jun 8, 2026
Federal patch due: Jun 11, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Ransomware campaign confirmed
CVE-2026-28318High
SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability
SolarWinds — Serv-U
Added to KEV: Jun 5, 2026
Federal patch due: Jun 19, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-45247High
Mirasvit Full Page Cache Warmer Deserialization of Untrusted Data Vulnerability
Mirasvit — Mirasvit Full Page Cache Warmer
Added to KEV: Jun 3, 2026
Federal patch due: Jun 6, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2022-0492High
Linux Kernel Improper Authentication Vulnerability
Linux — Kernel
Added to KEV: Jun 2, 2026
Federal patch due: Jun 5, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2025-48595High
Android Framework Integer Overflow Vulnerability
Android — Framework
Added to KEV: Jun 2, 2026
Federal patch due: Jun 5, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2024-21182High
Oracle WebLogic Server Unspecified Vulnerability
Oracle — WebLogic Server
Added to KEV: Jun 1, 2026
Federal patch due: Jun 4, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-0257High
Palo Alto Networks PAN-OS Authentication Bypass Vulnerability
Palo Alto Networks — PAN-OS
Added to KEV: May 29, 2026
Federal patch due: Jun 1, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CVE-2026-48027Critical
Nx Console Embedded Malicious Code Vulnerability
Nx — Nx Console
Added to KEV: May 27, 2026
Federal patch due: Jun 10, 2026
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Ransomware campaign confirmed
Are these vulnerabilities patched in your environment?
Zero Day IT delivers continuous patch management and vulnerability remediation so your business stays ahead of active exploits — not behind them.
Talk to Us About Patch Management →