KEV CATALOG May
KEV CATALOG 2026 H January(21) February(29) March(26) April(22) May(28) June(0) July(0) August(0) September(0) October(0) November(0) December(0)
DATE |
NAME |
Info |
CATEG. |
WEB |
| 31.5.26 | CVE-2026-0257 | Palo Alto Networks PAN-OS Authentication Bypass Vulnerability | KEV | KEV |
| 28.5.26 | CVE-2026-8398 | Daemon Tools Lite Embedded Malicious Code Vulnerability | KEV | KEV |
| 28.5.26 | CVE-2026-45321 | TanStack Unspecified Vulnerability | KEV | KEV |
| 28.5.26 | CVE-2026-48027 | Nx Console Embedded Malicious Code Vulnerability | KEV | KEV |
| 27.5.26 | CVE-2026-48172 | LiteSpeed cPanel Plugin Privilege Escalation Vulnerability | KEV | KEV |
| 23.5.26 | CVE-2026-9082 | Drupal Core SQL Injection Vulnerability | KEV | KEV |
| 22.5.26 | CVE-2025-34291 | Langflow Origin Validation Error Vulnerability | KEV | KEV |
| 22.5.26 | CVE-2026-34926 | Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability | KEV | KEV |
| 21.5.26 | CVE-2008-4250 | Microsoft Windows Buffer Overflow Vulnerability | KEV | KEV |
| 21.5.26 | CVE-2009-1537 | Microsoft DirectX NULL Byte Overwrite Vulnerability | KEV | KEV |
| 21.5.26 | CVE-2009-3459 | Adobe Acrobat and Reader Heap-Based Buffer Overflow Vulnerability | KEV | KEV |
| 21.5.26 | CVE-2010-0249 | Microsoft Internet Explorer Use-After-Free Vulnerability | KEV | KEV |
| 21.5.26 | CVE-2010-0806 | Microsoft Internet Explorer Use-After-Free Vulnerability | KEV | KEV |
| 21.5.26 | CVE-2026-41091 | Microsoft Defender Elevation of Privilege Vulnerability | KEV | KEV |
| 21.5.26 | CVE-2026-45498 | Microsoft Defender Denial of Service Vulnerability | ||
| 16.5.26 | CVE-2026-42897 | Microsoft Exchange Server Cross-Site Scripting Vulnerability | KEV | KEV |
| 16.5.26 | CVE-2026-20182 | Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability | KEV | KEV |
| 9.5.26 | CVE-2026-42208 | BerriAI LiteLLM SQL Injection Vulnerability | KEV | KEV |
| 9.5.26 | CVE-2026-6973 | Ivanti Endpoint Manager Mobile (EPMM) Improper Input Validation Vulnerability | KEV | KEV |
| s3.5.26 | CVE-2026-31431 | Linux Kernel Incorrect Resource Transfer Between Spheres Vulnerability | KEV | KEV |
| 3.5.26 | CVE-2026-41940 | WebPros cPanel & WHM and WP2 (WordPress Squared) Missing Authentication for Critical Function Vulnerability | ||
| 3.5.26 | CVE-2024-1708 | ConnectWise ScreenConnect Path | ||
| 3.5.26 | CVE-2026-32202 | Microsoft Windows Protection Mechanism Failure Vulnerability | KEV | KEV |
| 3.5.26 | CVE-2024-7399 | Samsung MagicINFO 9 Server Path Traversal Vulnerability | ||
| 3.5.26 | CVE-2024-57726 | SimpleHelp Missing Authorization Vulnerability | ||
| 3.5.26 | CVE-2024-57728 | SimpleHelp Path Traversal Vulnerability | KEV | KEV |
| 3.5.26 | CVE-2025-29635 | D-Link DIR-823X Command Injection Vulnerability | ||
| 3.5.26 | CVE-2026-39987 | Marimo Remote Code Execution Vulnerability |