About 28,000 results
Open links in new tab
  1. cisa.gov
    https://www.cisa.gov › known-exploited-vulnerabilities-catalog

    Known Exploited Vulnerabilities Catalog - CISA

    For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains …

  2. cisa.gov
    https://www.cisa.gov › news-events › cybersecurity-advisories

    2023 Top Routinely Exploited Vulnerabilities - CISA

    Nov 12, 2024 · Technical Details Key Findings In 2023, malicious cyber actors exploited more zero-day vulnerabilities to compromise enterprise networks compared to 2022, allowing them …

  3. cisa.gov
    https://www.cisa.gov › news-events › cybersecurity-advisories

    Critical Vulnerabilities in Microsoft Windows Operating Systems

    Jan 14, 2020 · An attacker could remotely exploit these vulnerabilities to decrypt, modify, or inject data on user connections: CryptoAPI spoofing vulnerability – CVE-2020-0601: This …

  4. cisa.gov
    https://www.cisa.gov › known-exploited-vulnerabilities

    Reducing the Significant Risk of Known Exploited Vulnerabilities

    Learn about the importance of CISA's Known Exploited Vulnerability (KEV) catalog and how to use it to help build a collective resilience across the cybersecurity community.

  5. cisa.gov
    https://www.cisa.gov › news-events › alerts › cisa-adds-one-known-expl…

    CISA Adds One Known Exploited Vulnerability, CVE-2025-53770 …

    Jul 20, 2025 · CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. See CISA’s Alert Microsoft Releases …

  6. cisa.gov
    https://www.cisa.gov › news-events › cybersecurity-advisories

    Top Routinely Exploited Vulnerabilities - CISA

    Aug 20, 2021 · This advisory provides details on the top 30 vulnerabilities—primarily Common Vulnerabilities and Exposures (CVEs)—routinely exploited by malicious cyber actors in 2020 …

  7. cisa.gov
    https://www.cisa.gov › news-events › cybersecurity-advisories

    2022 Top Routinely Exploited Vulnerabilities - CISA

    Aug 3, 2023 · Additional Routinely Exploited Vulnerabilities In addition to the 12 vulnerabilities listed in Table 1, the authoring agencies identified vulnerabilities—listed in Table 2—that were …

  8. cisa.gov
    https://www.cisa.gov › ... › secure-design-alert-eliminating-buffer-overflo…

    Secure by Design Alert: Eliminating Buffer Overflow Vulnerabilities

    Feb 12, 2025 · This Secure by Design Alert is part of an ongoing series aimed at advancing industry-wide best practices to eliminate entire classes of vulnerabilities during the design and …

  9. cisa.gov
    https://www.cisa.gov › ... › cisa-adds-five-known-exploited-vulnerabilitie…

    CISA Adds Five Known Exploited Vulnerabilities to Catalog

    Jun 2, 2025 · CISA has added five new vulnerabilities to its KEV Catalog, based on evidence of active exploitation.

  10. cisa.gov
    https://www.cisa.gov › news-events › cybersecurity-advisories

    2021 Top Routinely Exploited Vulnerabilities - CISA

    Apr 28, 2022 · These vulnerabilities include multiple vulnerabilities affecting internet-facing systems, including Accellion File Transfer Appliance (FTA), Windows Print Spooler, and Pulse …