Known Exploited Vulnerabilities (KEV)

CISA Catalog

Known Exploited Vulnerabilities

· Live CISA DataCISA KEV catalog — vulnerabilities with active exploitation requiring federal remediation

Data sourced from the official CISA Known Exploited Vulnerabilities Catalog. Federal agencies are required to remediate these vulnerabilities by the due date per BOD 22-01.

KEV Entries

1,619

Ransomware Use

327

Overdue

1,615

Vendors

266

Products

655

7 results · Page 1/1

CVE-2025-53521Overdue

Due: 2026-03-30
Added: 2026-03-27

F5 BIG-IP Stack-Based Buffer Overflow Vulnerability

F5 · BIG-IP

F5 BIG-IP APM contains a stack-based buffer overflow vulnerability that could allow a threat actor to achieve remote code execution.

Required Action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CVE-2023-46748Overdue

Due: 2023-11-21
Added: 2023-10-31

F5 BIG-IP Configuration Utility SQL Injection Vulnerability

F5 · BIG-IP Configuration Utility

F5 BIG-IP Configuration utility contains an SQL injection vulnerability that may allow an authenticated attacker with network access through the BIG-IP management port and/or self IP addresses to execute system commands. This vulnerability can be used in conjunction with CVE-2023-46747.

Required Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

CVE-2023-46747RansomwareOverdue

Due: 2023-11-21
Added: 2023-10-31

F5 BIG-IP Configuration Utility Authentication Bypass Vulnerability

F5 · BIG-IP Configuration Utility

F5 BIG-IP Configuration utility contains an authentication bypass using an alternate path or channel vulnerability due to undisclosed requests that may allow an unauthenticated attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute system commands. This vulnerability can be used in conjunction with CVE-2023-46748.

Required Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

CVE-2022-1388RansomwareOverdue

Due: 2022-05-31
Added: 2022-05-10

F5 BIG-IP Missing Authentication Vulnerability

F5 · BIG-IP

F5 BIG-IP contains a missing authentication in critical function vulnerability which can allow for remote code execution, creation or deletion of files, or disabling services.

Required Action

Apply updates per vendor instructions.

CVE-2021-22991Overdue

Due: 2022-02-01
Added: 2022-01-18

F5 BIG-IP Traffic Management Microkernel Buffer Overflow

F5 · BIG-IP Traffic Management Microkernel

The Traffic Management Microkernel of BIG-IP ASM Risk Engine has a buffer overflow vulnerability, leading to a bypassing of URL-based access controls.

Required Action

Apply updates per vendor instructions.

CVE-2020-5902RansomwareOverdue

Due: 2022-05-03
Added: 2021-11-03

F5 BIG-IP Traffic Management User Interface (TMUI) Remote Code Execution Vulnerability

F5 · BIG-IP

F5 BIG-IP Traffic Management User Interface (TMUI) contains a remote code execution vulnerability in undisclosed pages.

Required Action

Apply updates per vendor instructions.

CVE-2021-22986RansomwareOverdue

Due: 2021-11-17
Added: 2021-11-03

F5 BIG-IP and BIG-IQ Centralized Management iControl REST Remote Code Execution Vulnerability

F5 · BIG-IP and BIG-IQ Centralized Management

F5 BIG-IP and BIG-IQ Centralized Management contain a remote code execution vulnerability in the iControl REST interface that allows unauthenticated attackers with network access to execute system commands, create or delete files, and disable services.

Required Action

Apply updates per vendor instructions.