Threat Intelligence
Vulnerability Advisories
9 Realms tracks the CISA Known Exploited Vulnerabilities catalog and surfaces the threats most relevant to your environment. Click any entry for our full advisory.
1,592 entries in CISA KEV
CVE-2026-42897Microsoft · Microsoft
Microsoft Exchange Server Cross-Site Scripting Vulnerability
CVE-2026-20182Cisco · Catalyst SD-WAN
Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability
CVE-2026-42208BerriAI · LiteLLM
BerriAI LiteLLM SQL Injection Vulnerability
CVE-2026-6973Ivanti · Endpoint Manager Mobile (EPMM)
Ivanti Endpoint Manager Mobile (EPMM) Improper Input Validation Vulnerability
CVE-2026-0300Palo Alto Networks · PAN-OS
Palo Alto Networks PAN-OS Out-of-bounds Write Vulnerability
CVE-2026-31431Linux · Kernel
Linux Kernel Incorrect Resource Transfer Between Spheres Vulnerability
CVE-2026-41940WebPros · cPanel & WHM and WP2 (WordPress Squared)
WebPros cPanel & WHM and WP2 (WordPress Squared) Missing Authentication for Critical Function Vulnerability
CVE-2024-1708ConnectWise · ScreenConnect
ConnectWise ScreenConnect Path Traversal Vulnerability
CVE-2026-32202Microsoft · Windows
Microsoft Windows Protection Mechanism Failure Vulnerability
CVE-2025-29635D-Link · DIR-823X
D-Link DIR-823X Command Injection Vulnerability
CVE-2024-7399Samsung · MagicINFO 9 Server
Samsung MagicINFO 9 Server Path Traversal Vulnerability
CVE-2024-57728SimpleHelp · SimpleHelp
SimpleHelp Path Traversal Vulnerability
CVE-2024-57726SimpleHelp · SimpleHelp
SimpleHelp Missing Authorization Vulnerability
CVE-2026-39987Marimo · Marimo
Marimo Remote Code Execution Vulnerability
CVE-2026-33825Microsoft · Defender
Microsoft Defender Insufficient Granularity of Access Control Vulnerability
CVE-2026-20122Cisco · Catalyst SD-WAN Manger
Cisco Catalyst SD-WAN Manager Incorrect Use of Privileged APIs Vulnerability
CVE-2026-20133Cisco · Catalyst SD-WAN Manager
Cisco Catalyst SD-WAN Manager Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
CVE-2025-2749Kentico · Kentico Xperience
Kentico Xperience Path Traversal Vulnerability
CVE-2023-27351PaperCut · NG/MF
PaperCut NG/MF Improper Authentication Vulnerability
CVE-2025-48700Synacor · Zimbra Collaboration Suite (ZCS)
Synacor Zimbra Collaboration Suite (ZCS) Cross-site Scripting Vulnerability
CVE-2026-20128Cisco · Catalyst SD-WAN Manager
Cisco Catalyst SD-WAN Manager Storing Passwords in a Recoverable Format Vulnerability
CVE-2025-32975Quest · KACE Systems Management Appliance (SMA)
Quest KACE Systems Management Appliance (SMA) Improper Authentication Vulnerability
CVE-2024-27199JetBrains · TeamCity
JetBrains TeamCity Relative Path Traversal Vulnerability
CVE-2026-34197Apache · ActiveMQ
Apache ActiveMQ Improper Input Validation Vulnerability
Vulnerability data sourced from the CISA Known Exploited Vulnerabilities catalog. Threat level data from the SANS Internet Storm Center. Catalog contains 1,592 entries (version 2026.05.15).