KEV CATALOG June

KEV CATALOG 2026  H  January(21) February(29) March(26) April(13) May(15) June(0) July(0) August(0) September(0) October(0) November(0) December(0)


DATE

NAME

Info

CATEG.

WEB

30.6.26 CVE-2026-48558 SimpleHelp Authentication Bypass Vulnerability KEV KEV
27.6.26 CVE-2026-12569 PTC Windchill and FlexPLM Improper Input Validation Vulnerability KEV KEV
27.6.26 CVE-2026-20230 Cisco Unified Communications Manager Server-Side Request Forgery (SSRF) Vulnerability KEV KEV
24.6.26 CVE-2025-67038 Lantronix EDS5000 Code Injection Vulnerability KEV KEV
24.6.26 CVE-2026-34908 Ubiquiti UniFi OS Improper Access Control Vulnerability KEV KEV
24.6.26 CVE-2026-34909 Ubiquiti UniFi OS Path Traversal Vulnerability KEV KEV
24.6.26 CVE-2026-34910 Ubiquiti UniFi OS Improper Input Validation Vulnerability KEV KEV
21.6.26 CVE-2026-20253 Splunk Enterprise Missing Authentication for Critical Function Vulnerability KEV KEV
16.6.26 CVE-2026-20262 Cisco Catalyst SD-WAN Manager Directory or Path Traversal Vulnerability KEV KEV
16.6.26 CVE-2026-54420 LiteSpeed cPanel Plugin UNIX Symbolic Link (Symlink) Following Vulnerability KEV KEV
10.6.26 CVE-2026-20245 (CVSS score: 7.8) - An improper encoding or escaping of output vulnerability in Cisco Catalyst SD-WAN Manager that could allow an authenticated, local attacker to execute arbitrary commands as root by supplying a crafted file to the affected system. KEV KEV
10.6.26 CVE-2026-11645 (CVSS score: 8.8) - An out-of-bounds read and write vulnerability in Google Chrome V8 that could allow a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. KEV KEV
10.6.26 CVE-2026-7473 (CVSS score: 6.9) - An incomplete comparison with missing factors vulnerability in Arista Extensible Operating System (EOS) that could be exploited to process non-configured tunnel traffic. KEV KEV
9.6.26 CVE-2026-42271 BerriAI LiteLLM Command Injection Vulnerability KEV KEV
9.6.26 CVE-2026-50751 Check Point Security Gateway Improper Authentication Vulnerability KEV KEV
6.6.26 CVE-2026-28318 SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability KEV KEV
6.6.26 CVE-2026-45247 Mirasvit Full Page Cache Warmer Deserialization of Untrusted Data Vulnerability KEV KEV
3.6.26 CVE-2022-0492 Linux Kernel Improper Authentication Vulnerability KEV KEV
3.6.26 CVE-2025-48595 Android Framework Integer Overflow Vulnerability KEV KEV
2.6.26 CVE-2024-21182 Oracle WebLogic Server Unspecified Vulnerability KEV KEV