THE Known Exploited Vulnerabilities (KEV) catalog, maintained by CISA, serves as an essential resource for cybersecurity professionals to manage vulnerabilities that are actively exploited. It aids organizations in prioritizing vulnerability management and staying informed about threat activities. The catalog includes updates on specific vulnerabilities, such as CVE-2024-21182 related to Oracle WebLogic Server, which allows unauthorized access if exploited.
Organizations are advised to apply mitigations or discontinue usage if necessary. The KEV catalog is available in various formats including CSV and JSON, and users can nominate new vulnerabilities for inclusion.