Technology ❯ Cybersecurity ❯ Vulnerabilities

Known Exploited Vulnerabilities

CISA Catalog CVE-2020-24363 CVE-2025-55177 TP-Link Flaws CVE-2025-61932 CVE-2025-7775 CVE-2025-5086 CVE-2025-4008 CVE-2025-24893 GeoServer Adobe Experience Manager CVE-2025-11371 CISA CVE-2025-14611 N-able N-Central Flaws CVE-2025-43529

Apple, Google Rush Patches as CISA Flags WebKit Zero‑Day Exploits

CISA added Apple’s WebKit flaw to its Known Exploited list, setting a January 5 federal remediation deadline.

CISA Adds Actively Exploited GeoServer XXE to KEV, Orders Federal Patching

CISA Adds WatchGuard Firewall Remote Code Execution Flaw to KEV, Sets Dec. 3 Patching Deadline

CISA Adds Gladinet and CWP Flaws to KEV, Setting Nov. 25 Federal Remediation Deadline

CISA Adds VMware Aria Operations/Tools Flaw to KEV, Sets Nov. 20 Patch Deadline for Feds

CISA Adds Motex Lanscope RCE Flaw to KEV, Citing Active Exploitation

CISA Flags Active Exploits of Windows SMB Privilege Bug, Sets Nov. 10 Patch Deadline

CISA Adds Actively Exploited Adobe AEM Forms Flaw to KEV Catalog

CISA Adds Actively Exploited DELMIA Apriso Flaw to KEV With Oct. 2 Fix Deadline

CISA Adds Actively Exploited TP-Link and WhatsApp Flaws to KEV, Sets September Deadlines

CISA Lists Two N-able N-central Flaws as Actively Exploited