CISA KEV Catalog Updates

 

The CISA‘s Known Exploited Vulnerabilities Catalog updates are more and more frequent, and the power of exploit prediction is overwhelming. Federal agencies and private enterprises reap the benefit of additional time to remediate and comply with Binding Operational Directive 22-01.

March 30, 2023

The CISA has added 10 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 178 days advance notice to remediate.

  • 40% of the updates identified early
  • 30% identified early by prediction technology
  • 10% identified by threat intelligence technology

March 15, 2023

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

March 14, 2023

The CISA has added 3 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

March 10, 2023

The CISA has added 2 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 229 days advance notice to remediate.

  • 50% of the updates identified early
  • 50% identified early by prediction technology
  • 0% identified by threat intelligence technology

March 7, 2023

The CISA has added 3 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 229 days advance notice to remediate.

  • 100% of the updates identified early
  • 33.33% identified early by prediction technology
  • 66.67% identified by threat intelligence technology

February 27, 2023

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies 73 days advance notice to remediate.

  • 100% of the updates identified early
  • 100% identified early by prediction technology
  • 0% identified by threat intelligence technology

February 21, 2023

The CISA has added 3 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

February 16, 2023

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies 43 days advance notice to remediate.

  • 100% of the updates identified early
  • 0% identified early by prediction technology
  • 100% identified by threat intelligence technology

February 14, 2023

The CISA has added 4 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

February 10, 2023

The CISA has added 3 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

February 2, 2023

The CISA has added 2 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

January 26, 2023

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

January 23, 2023

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies 5 days advance notice to remediate.

  • 100% of the updates identified early
  • 0% identified early by prediction technology
  • 100% identified by threat intelligence technology

January 17, 2023

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies 5 days advance notice to remediate.

  • 100% of the updates identified early
  • 0% identified early by prediction technology
  • 100% identified by threat intelligence technology

January 10, 2023

The CISA has added 2 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 51 days advance notice to remediate.

  • 50% of the updates identified early
  • 50% identified early by prediction technology
  • 0% identified by threat intelligence technology

December 29, 2022

The CISA has added 2 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 1048 days advance notice to remediate.

  • 50% of the updates identified early
  • 50% identified early by prediction technology
  • 0% identified by threat intelligence technology

December 14, 2022

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies 0 days advance notice to remediate. This is a zero-day exploit.

  • 0% of the updates identified early
  • 00% identified early by prediction technology
  • 0% identified by threat intelligence technology

December 13, 2022

The CISA has added 5 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 51 days advance notice to remediate.

  • 20% of the updates identified early
  • 20% identified early by prediction technology
  • 0% identified by threat intelligence technology

December 5, 2022

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

November 28, 2022

The CISA has added 2 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

November 14, 2022

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

November 8, 2022

The CISA has added 7 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

October 28, 2022

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

October 25, 2022

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

October 24, 2022

The CISA has added 4 vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 944 days advance notice to remediate.

  • 100% of the updates identified early
  • 50% identified early by prediction technology
  • 50% identified by threat intelligence technology

October 20, 2022

The CISA has added 2 vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 163 days advance notice to remediate.

  • 100% of the updates identified early
  • 50% identified early by prediction technology
  • 50% identified by threat intelligence technology

October 11, 2022

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

October 3, 2022

The CISA has added 3 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 15 days advance notice to remediate.

  • 33% of the updates identified early
  • 33% identified early by prediction technology
  • 0% identified by threat intelligence technology

September 22, 2022

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

September 15, 2022

The CISA has added 6 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 1779 days advance notice to remediate.

  • 83% of the updates identified early
  • 50% identified early by prediction technology
  • 33% identified by threat intelligence technology

September 14, 2022

The CISA has added 2 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

September 8, 2022

The CISA has added 12 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 790 days advance notice to remediate.

  • 41% of the updates identified early
  • 33% identified early by prediction technology
  • 8% identified by threat intelligence technology

August 25, 2022

The CISA has added 10 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 117 days advance notice to remediate.

  • 50% of the updates identified early
  • 20% identified early by prediction technology
  • 30% identified by threat intelligence technology

August 22, 2022

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies an average of 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

August 18, 2022

The CISA has added 7 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 208 days advance notice to remediate.

  • 57.14% of the updates identified early
  • 14.29% identified early by prediction technology
  • 42.86% identified by threat intelligence technology

August 11, 2022

The CISA has added 2 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

August 9, 2022

The CISA has added 2 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 22 days advance notice to remediate.

  • 50% of the updates identified early
  • 50% identified early by prediction technology
  • 0% identified by threat intelligence technology

August 4, 2022

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies an average of 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

July 29, 2022

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies an average of 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

July 12, 2022

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies an average of 0 days advance notice to remediate. This vulnerability (CVE-2022-22047) is considered a zero-day threat.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

July 1, 2022

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies an average of 1 day advance notice to remediate.

  • 100% of the updates identified early
  • 0% identified early by prediction technology
  • 100% identified by threat intelligence technology

June 27, 2022

The CISA has added 8 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 622 days advance notice to remediate.

  • 37.5% of the updates identified early
  • 25% identified early by prediction technology
  • 12.5% identified by threat intelligence technology

June 14, 2022

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies an average of 16 days advance notice to remediate.

  • 100% of the updates identified early
  • 0% identified early by prediction technology
  • 100% identified by threat intelligence technology

June 9, 2022

The CISA has added 3 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 511 days advance notice to remediate.

  • 33.33% of the updates identified early
  • 33.33% identified early by prediction technology
  • 0% identified by threat intelligence technology

June 8, 2022

The CISA has added 36 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 1128 days advance notice to remediate.

  • 83.33% of the updates identified early
  • 44.44% identified early by prediction technology
  • 38.89% identified by threat intelligence technology

June 2, 2022

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies an average of 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

May 25, 2022

The CISA has added 34 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 1249 days advance notice to remediate.

  • 85.2% of the updates identified early
  • 55.8% identified early by prediction technology
  • 29.4% identified by threat intelligence technology

May 24, 2022

The CISA has added 20 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 955 days advance notice to remediate.

  • 65% of the updates identified early
  • 55% identified early by prediction technology
  • 10% identified by threat intelligence technology

May 23, 2022

The CISA has added 21 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 674 days advance notice to remediate.

  • 85.7% of the updates identified early
  • 61.9% identified early by prediction technology
  • 23.8% identified by threat intelligence technology

May 16, 2022

The CISA has added 2 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 46 days advance notice to remediate.

  • 50% of the updates identified early
  • 50% identified early by prediction technology
  • 0% identified by threat intelligence technology

May 11, 2022

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies 4 days advance notice to remediate.

  • 100% of the updates identified early
  • 0% identified early by prediction technology
  • 100% identified by threat intelligence technology

May 4, 2022

The CISA has added 5 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 670 days advance notice to remediate.

  • 100% of the updates identified early
  • 60% identified early by prediction technology
  • 40% identified by threat intelligence technology

April 25, 2022

The CISA has added 7 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 81 days advance notice to remediate.

  • 85.72% of the updates identified early
  • 42.86% identified early by prediction technology
  • 42.86% identified by threat intelligence technology

April 19, 2022

The CISA has added 3 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 344 days advance notice to remediate.

  • 100% of the updates identified early
  • 33.3% identified early by prediction technology
  • 66.6% identified by threat intelligence technology

April 15, 2022

The CISA has added 9 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 782 days advance notice to remediate.

  • 44% of the updates identified early
  • 33% identified early by prediction technology
  • 11% identified by threat intelligence technology

April 14, 2022

The CISA has added 1 new vulnerability to the KEVs catalog.

NorthStar gave federal agencies an average of 0 days advance notice to remediate.

  • 0% of the updates identified early
  • 0% identified early by prediction technology
  • 0% identified by threat intelligence technology

April 13, 2022

The CISA has added 10 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 1070 days advance notice to remediate.

  • 90% of the updates identified early
  • 60% identified early by prediction technology
  • 30% identified by threat intelligence technology

April 11, 2022

The CISA has added 8 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 624 days advance notice to remediate.

  • 75% of the updates identified early
  • 62.5% identified early by prediction technology
  • 12.5% identified by threat intelligence technology

April 6, 2022

The CISA has added 3 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 569 days advance notice to remediate.

  • 100% of the updates identified early
  • 66.66% identified early by prediction technology
  • 33.33% identified by threat intelligence technology

April 4, 2022

The CISA has added 4 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 4 days advance notice to remediate.

  • 25% of the updates identified early
  • 0% identified early by prediction technology
  • 25% identified by threat intelligence technology

March 31, 2022

The CISA has added 7 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 628 days advance notice to remediate.

  • 75% of the updates identified early
  • 50% identified early by prediction technology
  • 25% identified by threat intelligence technology

March 28, 2022

The CISA has added 32 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 802 days advance notice to remediate.

  • 87.5% of the updates identified early
  • 18.75% identified early by prediction technology
  • 68.75% identified by threat intelligence technology

March 25, 2022

The CISA has added 66 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 806 days advance notice to remediate.

  • 72.7% of the updates identified early
  • 53% identified early by prediction technology
  • 19.7% identified by threat intelligence technology

March 15, 2022

The CISA has added 15 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 909 days advance notice to remediate.

  • 100% of the updates identified early
  • 40% identified early by prediction technology
  • 60% identified by threat intelligence technology

March 7, 2022

The CISA has added 11 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 419 days advance notice to remediate.

  • 55% of the updates identified early
  • 28% identified early by prediction technology
  • 27% identified by threat intelligence technology

March 3, 2022

The CISA has added 95 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 991 days advance notice to remediate.

  • 56% of the updates identified early
  • 24% identified early by prediction technology
  • 32% identified by threat intelligence technology

February 15, 2022

The CISA has added 9 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 946 days advance notice to remediate.

  • 78% of the updates identified early
  • 11% identified early by prediction technology
  • 67% identified by threat intelligence technology

February 10, 2022

The CISA has added 15 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 920 days advance notice to remediate.

  • 93% of the updates identified early
  • 53% identified by prediction technology
  • 40% identified by threat intelligence technology

January 28, 2022

The CISA has added 8 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies of 532 days advance notice to remediate.

  • 88% of the updates identified early
  • 38% identified by prediction technology
  • 50% identified by threat intelligence technology

January 18, 2022

The CISA has added 13 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 241 days advance notice to remediate.

  • 85% of the updates identified early
  • 54% identified by prediction technology
  • 31% identified by threat intelligence technology

January 10th, 2022

The CISA has added 15 new vulnerabilities to the KEVs catalog.

NorthStar gave federal agencies an average of 694 days advance notice to remediate.

  • 87% of the updates identified early
  • 60% identified by prediction technology
  • 27% identified by threat intelligence technology

 

About NorthStar

NorthStar Navigator is the industry’s only yes/no categorical vulnerability prediction, providing a definitive assessment on whether a CVE will be exploited in the wild. For more information on vulnerability exploit prediction technology, click here.