cisa-kev
CISA KEVKeeps: CVE id, vendor, due date
CVE: CVE-2026-45659 Vendor/project: Microsoft Product: SharePoint Server Known ransomware campaign use: Unknown Due date: 2026-07-04 CWE: CWE-502 Microsoft SharePoint Server contains a deserialization of untrusted data vulnerability which allows an authorized attacker to execute
CVE: CVE-2026-48558 Vendor/project: SimpleHelp Product: SimpleHelp Known ransomware campaign use: Unknown Due date: 2026-07-02 CWE: CWE-347 SimpleHelp contains an authentication bypass vulnerability in the OIDC authentication flow. When OIDC authentication is configured, identity
CVE: CVE-2026-20230 Vendor/project: Cisco Product: Unified Communications Manager Known ransomware campaign use: Unknown Due date: 2026-06-28 CWE: CWE-918 Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unifie
CVE: CVE-2026-12569 Vendor/project: PTC Product: Windchill and FlexPLM Known ransomware campaign use: Unknown Due date: 2026-06-28 CWE: CWE-20, CWE-502 PTC Windchill and FlexPLM contains an improper input validation vulnerability allowing an unauthenticated, remote attacker to ex
CVE: CVE-2026-34908 Vendor/project: Ubiquiti Product: UniFi OS Known ransomware campaign use: Unknown Due date: 2026-06-26 CWE: CWE-284 Ubiquiti UniFi OS contains an improper access control vulnerability which could allow a malicious actor with access to the network to make unaut
CVE: CVE-2026-34909 Vendor/project: Ubiquiti Product: UniFi OS Known ransomware campaign use: Unknown Due date: 2026-06-26 CWE: CWE-22 Ubiquiti UniFi OS contains a path traversal vulnerability which could allow a malicious actor with access to the network to access files on the u
CVE: CVE-2026-34910 Vendor/project: Ubiquiti Product: UniFi OS Known ransomware campaign use: Unknown Due date: 2026-06-26 CWE: CWE-20 Ubiquiti UniFi OS contains an improper input validation vulnerability which could allow a malicious actor with access to the network to conduct c
CVE: CVE-2025-67038 Vendor/project: Lantronix Product: EDS5000 Known ransomware campaign use: Unknown Due date: 2026-06-26 CWE: CWE-78, CWE-94 Lantronix EDS5000 contains a code injection vulnerability that could allow attackers to inject arbitrary OS commands into the username pa
- 2026-06-05CISA KEV: SolarWinds / Serv-U / SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability
CVE: CVE-2026-28318 Vendor/project: SolarWinds Product: Serv-U Known ransomware campaign use: Unknown Due date: 2026-06-19 CWE: CWE-400 SolarWinds Serv-U contains an uncontrolled resource consumption vulnerability that allows specially crafted POST requests using the Content-Enco
CVE: CVE-2026-45247 Vendor/project: Mirasvit Product: Mirasvit Full Page Cache Warmer Known ransomware campaign use: Unknown Due date: 2026-06-06 CWE: CWE-502 Mirasvit Full Page Cache Warmer contains a deserialization of untrusted data vulnerability that could allow unauthenticat
CVE: CVE-2025-48595 Vendor/project: Android Product: Framework Known ransomware campaign use: Unknown Due date: 2026-06-05 CWE: CWE-190 Android Framework contains an integer overflow vulnerability that allows for code execution that could allow for local privilege escalation. Req
CVE: CVE-2022-0492 Vendor/project: Linux Product: Kernel Known ransomware campaign use: Unknown Due date: 2026-06-05 CWE: CWE-287, CWE-862 Linux Kernel contains an improper authentication vulnerability which could allow for privilege escalation via the cgroups v1 release_agent fe
CVE: CVE-2024-21182 Vendor/project: Oracle Product: WebLogic Server Known ransomware campaign use: Unknown Due date: 2026-06-04 Oracle WebLogic contains an unspecified vulnerability that could allow an unauthenticated attacker with network access via T3, IIOP to compromise Oracle
CVE: CVE-2026-0257 Vendor/project: Palo Alto Networks Product: PAN-OS Known ransomware campaign use: Unknown Due date: 2026-06-01 CWE: CWE-565 Palo Alto Networks PAN-OS contains an authentication bypass vulnerability that allows attackers to bypass security restrictions and estab
- 2026-05-27CISA KEV: Daemon / Daemon Tools Lite / Daemon Tools Lite Embedded Malicious Code Vulnerability
CVE: CVE-2026-8398 Vendor/project: Daemon Product: Daemon Tools Lite Known ransomware campaign use: Unknown Due date: 2026-05-30 CWE: CWE-506 Daemon Tools contains an unspecified vulnerability that has a high impact on confidentiality, integrity, and availability. Required action
CVE: CVE-2026-45321 Vendor/project: TanStack Product: TanStack Known ransomware campaign use: Known Due date: 2026-06-10 TanStack contains an unspecified vulnerability that allowed malicious versions of the product to be published to the npm registry to publish credential-stealin
CVE: CVE-2026-48027 Vendor/project: Nx Product: Nx Console Known ransomware campaign use: Known Due date: 2026-06-10 CWE: CWE-506 Nx Console contains an embedded malicious code vulnerability that allowed a malicious version of Nx Console to be published. The compromised extension
- 2026-05-26CISA KEV: LiteSpeed / cPanel Plugin / LiteSpeed cPanel Plugin Privilege Escalation Vulnerability
CVE: CVE-2026-48172 Vendor/project: LiteSpeed Product: cPanel Plugin Known ransomware campaign use: Unknown Due date: 2026-05-29 CWE: CWE-266 LiteSpeed cPanel Plugin contains privilege escalation vulnerability that is exposed via the user-end cPanel plugin, which can be abused by