Organizations should use the kev catalog as an input to their vulnerability management prioritization framework.how to use the kev. Ransomware vulnerability warning pilot updates A list of known exploited vulnerabilities.
Lil Kev (2025)
Learn about the importance of cisa's known exploited vulnerability (kev) catalog and how to use it to help build a collective resilience across the cybersecurity community.
Cisa has added one new vulnerability to its known exploited vulnerabilities (kev) catalog, based on evidence of active exploitation.
Federal agencies are able to see their open kevs in their continuous diagnostics and mitigation (cdm) dashboard, and commercial partners including palo alto networks , tenable , runecast, qualys , wiz, and rapid7 have. The kev catalog, cpgs, and prni exemplify cisa’s commitment to fostering collaboration across public and private sectors Cisa has added five new vulnerabilities to its known exploited vulnerabilities (kev) catalog, based on evidence of active exploitation
