KEV CATALOG February
KEV CATALOG 2026 H January(21) February(29) March(26) April(22) May(9) June(0) July(0) August(0) September(0) October(0) November(0) December(0)
DATE |
NAME |
Info |
CATEG. |
WEB |
|
|
Soliton Systems K.K. FileZen OS Command Injection Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2022-20775 | Cisco Catalyst SD-WAN Path Traversal Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2026-20127 | Cisco Catalyst SD-WAN Controller and Manager Authentication Bypass Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2025-49113 | RoundCube Webmail Deserialization of Untrusted Data Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2025-68461 | RoundCube Webmail Cross-site Scripting Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2021-22175 | GitLab Server-Side Request Forgery (SSRF) Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2026-22769 | Dell RecoverPoint for Virtual Machines (RP4VMs) Use of Hard-coded Credentials Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2008-0015 | Microsoft Windows Video ActiveX Control Remote Code Execution Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2020-7796 | Synacor Zimbra Collaboration Suite (ZCS) Server-Side Request Forgery Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2024-7694 | TeamT5 ThreatSonar Anti-Ransomware Unrestricted Upload of File with Dangerous Type Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2026-2441 | Google Chromium CSS Use-After-Free Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2024-43468 | Microsoft Configuration Manager SQL Injection Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2025-15556 | Notepad++ Download of Code Without Integrity Check Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2025-40536 | SolarWinds Web Help Desk Security Control Bypass Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2026-20700 | Apple Multiple Buffer Overflow Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2025-11953 | React Native Community CLI OS Command Injection Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2026-24423 | SmarterTools SmarterMail Missing Authentication for Critical Function Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2026-21510 | Microsoft Windows Shell Protection Mechanism Failure Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2026-21513 | Microsoft MSHTML Framework Security Feature Bypass Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2026-21514 | Microsoft Office Word Reliance on Untrusted Inputs in a Security Decision Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2026-21519 | Microsoft Windows Type Confusion Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2026-21525 | Microsoft Windows NULL Pointer Dereference Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2026-21533 | Windows Remote Desktop Services Elevation of Privilege Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2025-11953 | React Native Community CLI OS Command Injection Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2026-24423 | SmarterTools SmarterMail Missing Authentication for Critical Function Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2019-19006 | Sangoma FreePBX Improper Authentication Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2021-39935 | GitLab Community and Enterprise Editions Server-Side Request Forgery (SSRF) Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2025-40551 | SolarWinds Web Help Desk Deserialization of Untrusted Data Vulnerability |
VULNEREBILITY |
VULNEREBILITY |
|
| CVE-2025-64328 | Sangoma FreePBX OS Command Injection Vulnerability |
VULNEREBILITY |
VULNEREBILITY |