⚠
These CVEs are listed in CISA's Known Exploited Vulnerabilities (KEV) catalog. They are confirmed to be actively exploited in the wild. Immediate remediation is strongly recommended.
Known Exploited VulnerabilitiesACTIVE THREATS
Vulnerabilities confirmed by CISA to be actively exploited. These should be prioritized for immediate patching and remediation in your environment.
8KEV Listed
4Critical
3High
⚠ KEV Catalog Entries (8)
| CVE ID | Title | Severity | CVSS | KEV Date | Fix |
|---|---|---|---|---|---|
| CVE-2026-3502 | high | 7.8 | Apr 2, 2026 | YES | |
| CVE-2026-5281 | high | 8.8 | Apr 1, 2026 | YES | |
| CVE-2026-3055 | critical | 9.8 | Mar 31, 2026 | YES | |
| CVE-2025-31277 | high | 8.8 | Mar 20, 2026 | YES | |
| CVE-2025-43520 | medium | 5.5 | Mar 20, 2026 | YES | |
| CVE-2026-20127 | critical | 9.8 | Mar 15, 2026 | YES | |
| CVE-2026-25108 | critical | 9.8 | Mar 15, 2026 | YES | |
| CVE-2025-49113 | critical | 9.8 | Mar 15, 2025 | YES |
CVE-2026-3502
7.8high
TrueConf Client Update Integrity Bypass — Remote Code Execution via Tampered Updates
CVE-2026-5281
8.8high
Google Chrome Dawn Use-After-Free Zero-Day (WebGPU)
CVE-2026-3055
9.8critical
Citrix NetScaler ADC/Gateway SAML IDP Memory Overread (Critical)
CVE-2025-31277
8.8high
Apple DarkSword: WebKit Buffer Overflow Exploited in iOS Spy Campaign
CVE-2025-43520
5.5medium
Apple DarkSword Buffer Overflow — Actively Exploited iOS/macOS Kernel Write
CVE-2026-20127
9.8critical
Cisco IOS XE Web UI Authentication Bypass
CVE-2026-25108
9.8critical
Unauthenticated Remote Code Execution in Acme Cloud Platform
CVE-2025-49113
9.8critical