CyberAlerts Known Exploited Vulnerabilities (KEV)

CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CyberAlerts provides a trusted catalog of vulnerabilities known to be exploited in the wild, drawing from many sources, including CISA KEV. Organizations can use this catalog to better prioritize and manage vulnerabilities in response to real-world threat activity. Further information here.

Free API Access!

Show Not In CISA KEV

Displaying vulnerabilities 71 - 80 of 131 in total

CVE-2025-30355	Synapse vulnerable to federation denial of service via malformed events Description: Synapse is an open source Matrix homeserver implementation. A malicious server can craft events which, when received, prevent Synapse version up to 1.127.0 from federating with other servers. The vulnerability has been exploited in the wild and has been fixed in Synapse v1.127.1. No known workarounds are available. CVSS: HIGH (7.1) EPSS Score: 0.94% SSVC Exploitation: none March 27th, 2025 (3 months ago)
CVE-2025-2783	Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on Windows prior to 134.0.6998.177 allowed a remote attacker to... Description: Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on Windows prior to 134.0.6998.177 allowed a remote attacker to perform a sandbox escape via a malicious file. (Chromium security severity: High) CVSS: HIGH (8.3) EPSS Score: 2.01% SSVC Exploitation: none March 26th, 2025 (3 months ago)
CVE-2025-30154	Multiple Reviewdog actions were compromised during a specific time period Description: reviewdog/action-setup is a GitHub action that installs reviewdog. reviewdog/action-setup@v1 was compromised March 11, 2025, between 18:42 and 20:31 UTC, with malicious code added that dumps exposed secrets to Github Actions Workflow Logs. Other reviewdog actions that use `reviewdog/action-setup@v1` that would also be compromised, regardless of version or pinning method, are reviewdog/action-shellcheck, reviewdog/action-composite-template, reviewdog/action-staticcheck, reviewdog/action-ast-grep, and reviewdog/action-typos. CVSS: HIGH (8.6) EPSS Score: 42.39% March 24th, 2025 (3 months ago)
CVE-2025-30349	Horde IMP through 6.2.27, as used with Horde Application Framework through 5.2.23, allows XSS that leads to account takeover via a crafted... Description: Horde IMP through 6.2.27, as used with Horde Application Framework through 5.2.23, allows XSS that leads to account takeover via a crafted text/html e-mail message with an onerror attribute (that may use base64-encoded JavaScript code), as exploited in the wild in March 2025. CVSS: HIGH (7.2) EPSS Score: 2.46% SSVC Exploitation: none March 21st, 2025 (4 months ago)
CVE-2024-20439	Cisco Smart Licensing Utility Static Credential Vulnerability Description: A vulnerability in Cisco Smart Licensing Utility could allow an unauthenticated, remote attacker to log in to an affected system by using a static administrative credential. This vulnerability is due to an undocumented static user credential for an administrative account. An attacker could exploit this vulnerability by using the static credentials to log in to the affected system. A successful exploit could allow the attacker to log in to the affected system with administrative privileges over the API of the Cisco Smart Licensing Utility application. CVSS: CRITICAL (9.8) EPSS Score: 89.45% SSVC Exploitation: active March 21st, 2025 (4 months ago)
CVE-2025-30259	The WhatsApp cloud service before late 2024 did not block certain crafted PDF content that can defeat a sandbox protection mechanism and... Description: The WhatsApp cloud service before late 2024 did not block certain crafted PDF content that can defeat a sandbox protection mechanism and consequently allow remote access to messaging applications by third parties, as exploited in the wild in 2024 for installation of Android malware associated with BIGPRETZEL. CVSS: LOW (3.5) EPSS Score: 0.03% March 20th, 2025 (4 months ago)
CVE-2024-48248	NAKIVO Backup & Replication before 11.0.0.88174 allows absolute path traversal for reading files via getImageByPath to /c/router (this may lead to... Description: NAKIVO Backup & Replication before 11.0.0.88174 allows absolute path traversal for reading files via getImageByPath to /c/router (this may lead to remote code execution across the enterprise because PhysicalDiscovery has cleartext credentials). CVSS: HIGH (8.6) EPSS Score: 90.8% March 19th, 2025 (4 months ago)
CVE-2025-24472	An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] affecting FortiOS 7.0.0 through 7.0.16 and FortiProxy 7.2.0... Description: An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] affecting FortiOS 7.0.0 through 7.0.16 and FortiProxy 7.2.0 through 7.2.12, 7.0.0 through 7.0.19 may allow a remote attacker to gain super-admin privileges via crafted CSF proxy requests. CVSS: HIGH (8.1) EPSS Score: 0.04% March 18th, 2025 (4 months ago)
CVE-2025-30066	tj-actions changed-files through 45.0.7 allows remote attackers to discover secrets by reading actions logs. (The tags v1 through v45.0.7 were not... Description: tj-actions changed-files through 45.0.7 allows remote attackers to discover secrets by reading actions logs. (The tags v1 through v45.0.7 were not originally affected, but were modified by a threat actor to point at commit 0e58ed8, which contains the malicious updateFeatures code.) CVSS: HIGH (8.6) EPSS Score: 63.87% March 18th, 2025 (4 months ago)
CVE-2025-1316	Edimax IC-7100 IP Camera OS Command Injection Description: Edimax IC-7100 does not properly neutralize requests. An attacker can create specially crafted requests to achieve remote code execution on the device CVSS: CRITICAL (9.3) EPSS Score: 50.61% March 17th, 2025 (4 months ago)