KEV CATALOG February
KEV CATALOG 2026 H January(21) February(29) March(26) April(22) May(9) June(0) July(0) August(0) September(0) October(0) November(0) December(0)
DATE |
NAME |
Info |
CATEG. |
WEB |
|
|
Soliton Systems K.K. FileZen OS Command Injection Vulnerability |
KEV | KEV | |
| CVE-2022-20775 | Cisco Catalyst SD-WAN Path Traversal Vulnerability | KEV | KEV | |
| CVE-2026-20127 | Cisco Catalyst SD-WAN Controller and Manager Authentication Bypass Vulnerability | KEV | KEV | |
| CVE-2025-49113 | RoundCube Webmail Deserialization of Untrusted Data Vulnerability | KEV | KEV | |
| CVE-2025-68461 | RoundCube Webmail Cross-site Scripting Vulnerability | KEV | KEV | |
| CVE-2021-22175 | GitLab Server-Side Request Forgery (SSRF) Vulnerability | KEV | KEV | |
| CVE-2026-22769 | Dell RecoverPoint for Virtual Machines (RP4VMs) Use of Hard-coded Credentials Vulnerability | KEV | KEV | |
| CVE-2008-0015 | Microsoft Windows Video ActiveX Control Remote Code Execution Vulnerability | KEV | KEV | |
| CVE-2020-7796 | Synacor Zimbra Collaboration Suite (ZCS) Server-Side Request Forgery Vulnerability | KEV | KEV | |
| CVE-2024-7694 | TeamT5 ThreatSonar Anti-Ransomware Unrestricted Upload of File with Dangerous Type Vulnerability | KEV | KEV | |
| CVE-2026-2441 | Google Chromium CSS Use-After-Free Vulnerability | KEV | KEV | |
| CVE-2024-43468 | Microsoft Configuration Manager SQL Injection Vulnerability | KEV | KEV | |
| CVE-2025-15556 | Notepad++ Download of Code Without Integrity Check Vulnerability | KEV | KEV | |
| CVE-2025-40536 | SolarWinds Web Help Desk Security Control Bypass Vulnerability | KEV | KEV | |
| CVE-2026-20700 | Apple Multiple Buffer Overflow Vulnerability | KEV | KEV | |
| CVE-2025-11953 | React Native Community CLI OS Command Injection Vulnerability | KEV | KEV | |
| CVE-2026-24423 | SmarterTools SmarterMail Missing Authentication for Critical Function Vulnerability | KEV | KEV | |
| CVE-2026-21510 | Microsoft Windows Shell Protection Mechanism Failure Vulnerability | KEV | KEV | |
| CVE-2026-21513 | Microsoft MSHTML Framework Security Feature Bypass Vulnerability | KEV | KEV | |
| CVE-2026-21514 | Microsoft Office Word Reliance on Untrusted Inputs in a Security Decision Vulnerability | KEV | KEV | |
| CVE-2026-21519 | Microsoft Windows Type Confusion Vulnerability | KEV | KEV | |
| CVE-2026-21525 | Microsoft Windows NULL Pointer Dereference Vulnerability | KEV | KEV | |
| CVE-2026-21533 | Windows Remote Desktop Services Elevation of Privilege Vulnerability | KEV | KEV | |
| CVE-2025-11953 | React Native Community CLI OS Command Injection Vulnerability | KEV | KEV | |
| CVE-2026-24423 | SmarterTools SmarterMail Missing Authentication for Critical Function Vulnerability | KEV | KEV | |
| CVE-2019-19006 | Sangoma FreePBX Improper Authentication Vulnerability | KEV | KEV | |
| CVE-2021-39935 | GitLab Community and Enterprise Editions Server-Side Request Forgery (SSRF) Vulnerability | KEV | KEV | |
| CVE-2025-40551 | SolarWinds Web Help Desk Deserialization of Untrusted Data Vulnerability | KEV | KEV | |
| CVE-2025-64328 | Sangoma FreePBX OS Command Injection Vulnerability | KEV | KEV |