IsItPatched — Newly exploited CVEs (CISA KEV)

IsItPatched — Newly exploited CVEs (CISA KEV) https://isitpatched.com/exploited Vulnerabilities just added to CISA's Known Exploited Vulnerabilities catalog that affect software tracked by IsItPatched. en Compiled by IsItPatched (isitpatched.com) from NVD, CISA KEV, EPSS and endoflife.date. IsItPatched (https://isitpatched.com) https://www.rssboard.org/rss-specification 15 https://isitpatched.com/icon-192.png IsItPatched — Newly exploited CVEs (CISA KEV) https://isitpatched.com/exploited Thu, 18 Jun 2026 00:34:29 GMT CVE-2026-20262 — Catalyst SD-WAN Manager (Medium, actively exploited) https://isitpatched.com/cve/CVE-2026-20262 https://isitpatched.com/cve/CVE-2026-20262 Severity: Medium (CVSS 6.5) · Path traversal · Affects: Catalyst SD-WAN Manager · EPSS 1% Medium IsItPatched Tue, 16 Jun 2026 15:24:47 GMT CVE-2026-35273 — PeopleSoft Enterprise PeopleTools (Critical, actively exploited) https://isitpatched.com/cve/CVE-2026-35273 https://isitpatched.com/cve/CVE-2026-35273 Severity: Critical (CVSS 9.8) · Missing authentication · Affects: PeopleSoft Enterprise PeopleTools · Linked to ransomware campaigns · EPSS 1% Ransomware-linked IsItPatched Fri, 12 Jun 2026 20:33:25 GMT CVE-2026-10520 — Sentry (Critical, actively exploited) https://isitpatched.com/cve/CVE-2026-10520 https://isitpatched.com/cve/CVE-2026-10520 Severity: Critical (CVSS 10) · OS command injection · Affects: Sentry · EPSS 60% Critical IsItPatched Fri, 12 Jun 2026 13:18:36 GMT CVE-2026-45247 — Mirasvit Full Page Cache Warmer (Critical, actively exploited) https://isitpatched.com/cve/CVE-2026-45247 https://isitpatched.com/cve/CVE-2026-45247 Severity: Critical (CVSS 9.8) · Insecure deserialization · Affects: Mirasvit Full Page Cache Warmer · EPSS 2% Critical IsItPatched Fri, 12 Jun 2026 08:00:31 GMT CVE-2026-20245 — Catalyst SD-WAN Manager (High, actively exploited) https://isitpatched.com/cve/CVE-2026-20245 https://isitpatched.com/cve/CVE-2026-20245 Severity: High (CVSS 7.8) · CWE-116 · Affects: Catalyst SD-WAN Manager · EPSS 1% High IsItPatched Fri, 12 Jun 2026 08:00:31 GMT CVE-2026-42271 — LiteLLM (High, actively exploited) https://isitpatched.com/cve/CVE-2026-42271 https://isitpatched.com/cve/CVE-2026-42271 Severity: High (CVSS 8.8) · Command injection · Affects: LiteLLM · EPSS 54% High IsItPatched Fri, 12 Jun 2026 08:00:31 GMT CVE-2026-7473 — EOS (Medium, actively exploited) https://isitpatched.com/cve/CVE-2026-7473 https://isitpatched.com/cve/CVE-2026-7473 Severity: Medium (CVSS 5.8) · CWE-1023 · Affects: EOS · EPSS 0% Medium IsItPatched Fri, 12 Jun 2026 08:00:31 GMT CVE-2026-0257 — Palo Alto PAN-OS (Critical, actively exploited) https://isitpatched.com/cve/CVE-2026-0257 https://isitpatched.com/cve/CVE-2026-0257 Severity: Critical (CVSS 9.1) · CWE-565 · Affects: Palo Alto PAN-OS · EPSS 19% Critical IsItPatched Fri, 29 May 2026 00:00:00 GMT CVE-2026-48027 — Nx Console (Critical, actively exploited) https://isitpatched.com/cve/CVE-2026-48027 https://isitpatched.com/cve/CVE-2026-48027 Severity: Critical (CVSS 9.8) · CWE-506 · Affects: Nx Console · Linked to ransomware campaigns · EPSS 1% Ransomware-linked IsItPatched Wed, 27 May 2026 00:00:00 GMT CVE-2026-41091 — Microsoft Defender (Malware Protection Engine) (High, actively exploited) https://isitpatched.com/cve/CVE-2026-41091 https://isitpatched.com/cve/CVE-2026-41091 Severity: High (CVSS 7.8) · CWE-59 · Affects: Microsoft Defender (Malware Protection Engine) · EPSS 1% High IsItPatched Wed, 20 May 2026 00:00:00 GMT CVE-2026-20182 — Catalyst SD-WAN Manager (Critical, actively exploited) https://isitpatched.com/cve/CVE-2026-20182 https://isitpatched.com/cve/CVE-2026-20182 Severity: Critical (CVSS 10) · Improper authentication · Affects: Catalyst SD-WAN Manager · EPSS 78% Critical IsItPatched Thu, 14 May 2026 00:00:00 GMT CVE-2026-42208 — LiteLLM (Critical, actively exploited) https://isitpatched.com/cve/CVE-2026-42208 https://isitpatched.com/cve/CVE-2026-42208 Severity: Critical (CVSS 9.8) · SQL injection · Affects: LiteLLM · EPSS 93% Critical IsItPatched Fri, 08 May 2026 00:00:00 GMT CVE-2026-0300 — Palo Alto PAN-OS (Critical, actively exploited) https://isitpatched.com/cve/CVE-2026-0300 https://isitpatched.com/cve/CVE-2026-0300 Severity: Critical (CVSS 9.8) · Out-of-bounds write · Affects: Palo Alto PAN-OS · EPSS 32% Critical IsItPatched Wed, 06 May 2026 00:00:00 GMT CVE-2026-31431 — SUSE Linux Enterprise Server (High, actively exploited) https://isitpatched.com/cve/CVE-2026-31431 https://isitpatched.com/cve/CVE-2026-31431 Severity: High (CVSS 7.8) · CWE-669 · Affects: SUSE Linux Enterprise Server · EPSS 76% High IsItPatched Fri, 01 May 2026 00:00:00 GMT CVE-2024-57728 — SimpleHelp (High, actively exploited) https://isitpatched.com/cve/CVE-2024-57728 https://isitpatched.com/cve/CVE-2024-57728 Severity: High (CVSS 7.2) · CWE-59 · Affects: SimpleHelp · Linked to ransomware campaigns · EPSS 8% Ransomware-linked IsItPatched Fri, 24 Apr 2026 00:00:00 GMT CVE-2024-57726 — SimpleHelp (Critical, actively exploited) https://isitpatched.com/cve/CVE-2024-57726 https://isitpatched.com/cve/CVE-2024-57726 Severity: Critical (CVSS 9.9) · Missing authorization · Affects: SimpleHelp · Linked to ransomware campaigns · EPSS 9% Ransomware-linked IsItPatched Fri, 24 Apr 2026 00:00:00 GMT CVE-2024-7399 — MagicINFO 9 Server (High, actively exploited) https://isitpatched.com/cve/CVE-2024-7399 https://isitpatched.com/cve/CVE-2024-7399 Severity: High (CVSS 8.8) · Path traversal · Affects: MagicINFO 9 Server · EPSS 92% High IsItPatched Fri, 24 Apr 2026 00:00:00 GMT CVE-2026-39987 — Marimo (Critical, actively exploited) https://isitpatched.com/cve/CVE-2026-39987 https://isitpatched.com/cve/CVE-2026-39987 Severity: Critical (CVSS 9.8) · Missing authentication · Affects: Marimo · EPSS 96% Critical IsItPatched Thu, 23 Apr 2026 00:00:00 GMT CVE-2024-27199 — TeamCity (High, actively exploited) https://isitpatched.com/cve/CVE-2024-27199 https://isitpatched.com/cve/CVE-2024-27199 Severity: High (CVSS 7.3) · Path traversal · Affects: TeamCity · Linked to ransomware campaigns · EPSS 100% Ransomware-linked IsItPatched Mon, 20 Apr 2026 00:00:00 GMT CVE-2025-32975 — KACE Systems Management Appliance (SMA) (Critical, actively exploited) https://isitpatched.com/cve/CVE-2025-32975 https://isitpatched.com/cve/CVE-2025-32975 Severity: Critical (CVSS 10) · Improper authentication · Affects: KACE Systems Management Appliance (SMA) · EPSS 2% Critical IsItPatched Mon, 20 Apr 2026 00:00:00 GMT CVE-2025-48700 — Zimbra Collaboration Suite (ZCS) (Medium, actively exploited) https://isitpatched.com/cve/CVE-2025-48700 https://isitpatched.com/cve/CVE-2025-48700 Severity: Medium (CVSS 6.1) · Cross-site scripting (XSS) · Affects: Zimbra Collaboration Suite (ZCS) · EPSS 2% Medium IsItPatched Mon, 20 Apr 2026 00:00:00 GMT CVE-2025-2749 — Kentico Xperience (High, actively exploited) https://isitpatched.com/cve/CVE-2025-2749 https://isitpatched.com/cve/CVE-2025-2749 Severity: High (CVSS 7.2) · Path traversal · Affects: Kentico Xperience · EPSS 4% High IsItPatched Mon, 20 Apr 2026 00:00:00 GMT CVE-2026-20133 — Catalyst SD-WAN Manager (Medium, actively exploited) https://isitpatched.com/cve/CVE-2026-20133 https://isitpatched.com/cve/CVE-2026-20133 Severity: Medium (CVSS 6.5) · Information disclosure · Affects: Catalyst SD-WAN Manager · EPSS 9% Medium IsItPatched Mon, 20 Apr 2026 00:00:00 GMT CVE-2026-20128 — Catalyst SD-WAN Manager (High, actively exploited) https://isitpatched.com/cve/CVE-2026-20128 https://isitpatched.com/cve/CVE-2026-20128 Severity: High (CVSS 7.5) · CWE-257 · Affects: Catalyst SD-WAN Manager · EPSS 5% High IsItPatched Mon, 20 Apr 2026 00:00:00 GMT CVE-2026-20122 — Catalyst SD-WAN Manager (Medium, actively exploited) https://isitpatched.com/cve/CVE-2026-20122 https://isitpatched.com/cve/CVE-2026-20122 Severity: Medium (CVSS 5.4) · CWE-648 · Affects: Catalyst SD-WAN Manager · EPSS 6% Medium IsItPatched Mon, 20 Apr 2026 00:00:00 GMT