Base des vulnérabilités à forte valeur suivies et priorisées par FactualRisk (KEV, P0/P1, exploitées dans la nature, EPSS élevé). Chaque fiche reste accessible en permanence et est mise à jour à chaque collecte.
| CVE | Produit | CVSS | Prio | KEV |
| CVE-2026-20182 | Cisco Catalyst SD-WAN | 10.0 | P0 | KEV |
| CVE-2024-1212 | Progress Kemp LoadMaster | 10.0 | P0 | KEV |
| CVE-2024-3400 | Palo Alto Networks PAN-OS | 10.0 | P0 | KEV |
| CVE-2023-46604 | Apache ActiveMQ | 10.0 | P0 | KEV |
| CVE-2023-20198 | Cisco IOS XE Web UI | 10.0 | P0 | KEV |
| CVE-2026-48027 | Nx Nx Console | 9.8 | P0 | KEV |
| CVE-2026-8398 | Daemon Daemon Tools Lite | 9.8 | P0 | KEV |
| CVE-2026-48172 | LiteSpeed cPanel Plugin | 9.8 | P0 | KEV |
| CVE-2026-9082 | Drupal Core | 9.8 | P0 | KEV |
| CVE-2008-4250 | Microsoft Windows | 9.8 | P0 | KEV |
| CVE-2026-42208 | BerriAI LiteLLM | 9.8 | P0 | KEV |
| CVE-2026-0300 | Palo Alto Networks PAN-OS | 9.8 | P0 | KEV |
| CVE-2024-21413 | Microsoft Office Outlook | 9.8 | P0 | KEV |
| CVE-2024-40766 | SonicWall SonicOS | 9.8 | P0 | KEV |
| CVE-2023-29357 | Microsoft SharePoint Server | 9.8 | P0 | KEV |
| CVE-2023-22518 | Atlassian Confluence Data Center and Serve | 9.8 | P0 | KEV |
| CVE-2023-22515 | Atlassian Confluence Data Center and Serve | 9.8 | P0 | KEV |
| CVE-2023-42793 | JetBrains TeamCity | 9.8 | P0 | KEV |
| CVE-2023-3519 | Citrix NetScaler ADC and NetScaler Gateway | 9.8 | P0 | KEV |
| CVE-2023-27997 | Fortinet FortiOS and FortiProxy SSL-VPN | 9.8 | P0 | KEV |
| CVE-2023-34362 | Progress MOVEit Transfer | 9.8 | P0 | KEV |
| CVE-2023-23397 | Microsoft Office | 9.8 | P0 | KEV |
| CVE-2022-47966 | Zoho ManageEngine | 9.8 | P0 | KEV |
| CVE-2022-42475 | Fortinet FortiOS | 9.8 | P0 | KEV |
| CVE-2022-40684 | Fortinet Multiple Products | 9.8 | P0 | KEV |
| CVE-2026-45247 | Mirasvit Mirasvit Full Page Cache Warmer | 9.8 | P0 | KEV |
| CVE-2026-45321 | TanStack TanStack | 9.6 | P0 | KEV |
| CVE-2023-4966 | Citrix NetScaler ADC and NetScaler Gateway | 9.4 | P0 | KEV |
| CVE-2026-0257 | Palo Alto Networks PAN-OS | 9.1 | P0 | KEV |
| CVE-2024-21887 | Ivanti Connect Secure and Policy Secure | 9.1 | P0 | KEV |
| CVE-2025-34291 | Langflow Langflow | 8.8 | P0 | KEV |
| CVE-2009-1537 | Microsoft DirectX | 8.8 | P0 | KEV |
| CVE-2009-3459 | Adobe Acrobat and Reader | 8.8 | P0 | KEV |
| CVE-2010-0249 | Microsoft Internet Explorer | 8.8 | P0 | KEV |
| CVE-2010-0806 | Microsoft Internet Explorer | 8.8 | P0 | KEV |
| CVE-2017-6742 | Cisco IOS and IOS XE Software | 8.8 | P0 | KEV |
| CVE-2024-20353 | Cisco Adaptive Security Appliance (ASA) an | 8.6 | P0 | KEV |
| CVE-2025-48595 | Android Framework | 8.4 | P0 | KEV |
| CVE-2023-46805 | Ivanti Connect Secure and Policy Secure | 8.2 | P0 | KEV |
| CVE-2026-44016 | pip docling | 8.2 | P0 | |
| CVE-2026-42897 | Microsoft Microsoft | 8.1 | P0 | KEV |
| CVE-2024-21412 | Microsoft Windows | 8.1 | P0 | KEV |
| CVE-2026-41091 | Microsoft Defender | 7.8 | P0 | KEV |
| CVE-2022-38028 | Microsoft Windows | 7.8 | P0 | KEV |
| CVE-2023-38831 | RARLAB WinRAR | 7.8 | P0 | KEV |
| CVE-2022-0492 | Linux Kernel | 7.8 | P0 | KEV |
| CVE-2026-47331 | Ubuntu | 7.8 | P0 | |
| CVE-2024-21182 | Oracle WebLogic Server | 7.5 | P0 | KEV |
| CVE-2023-44487 | IETF HTTP/2 | 7.5 | P0 | KEV |
| CVE-2023-27532 | Veeam Backup & Replication | 7.5 | P0 | KEV |
| CVE-2026-41292 | Ubuntu | 7.5 | P0 | |
| CVE-2026-42959 | Ubuntu | 7.5 | P0 | |
| CVE-2026-44017 | pip docling | 7.5 | P0 | |
| CVE-2026-44511 | rubygems katalyst-koi | 7.4 | P0 | |
| CVE-2025-9906 | pip keras | 7.3 | P0 | |
| CVE-2026-6973 | Ivanti Endpoint Manager Mobile (EPMM) | 7.2 | P0 | KEV |
| CVE-2023-20273 | Cisco Cisco IOS XE Web UI | 7.2 | P0 | KEV |
| CVE-2023-0669 | Fortra GoAnywhere MFT | 7.2 | P0 | KEV |
| CVE-2024-38213 | Microsoft Windows | 6.5 | P0 | KEV |
| CVE-2022-27924 | Synacor Zimbra Collaboration Suite (ZCS) | 0.0 | P0 | KEV |
| CVE-2022-30190 | Microsoft Windows | 0.0 | P0 | KEV |
| CVE-2022-1388 | F5 BIG-IP | 0.0 | P0 | KEV |
| CVE-2022-29464 | WSO2 Multiple Products | 0.0 | P0 | KEV |
| CVE-2022-24682 | Synacor Zimbra Collaborate Suite (ZCS) | 0.0 | P0 | KEV |
| CVE-2022-0609 | Google Chromium Animation | 0.0 | P0 | KEV |
| CVE-2021-27860 | FatPipe WARP, IPVPN, and MPVPN software | 0.0 | P0 | KEV |
| CVE-2021-44228 | Apache Log4j2 | 0.0 | P0 | KEV |
| CVE-2021-44077 | Zoho ManageEngine ServiceDesk Plus (SDP) / | 0.0 | P0 | KEV |
| CVE-2021-42321 | Microsoft Exchange | 0.0 | P0 | KEV |
| CVE-2021-26084 | Atlassian Confluence Server and Data Cente | 0.0 | P0 | KEV |
| CVE-2019-3396 | Atlassian Confluence Server and Data Serve | 0.0 | P0 | KEV |
| CVE-2018-0171 | Cisco IOS and IOS XE | 0.0 | P0 | KEV |
| CVE-2019-19781 | Citrix Application Delivery Controller (AD | 0.0 | P0 | KEV |
| CVE-2021-22205 | GitLab Community and Enterprise Editions | 0.0 | P0 | KEV |
| CVE-2021-22986 | F5 BIG-IP and BIG-IQ Centralized Managemen | 0.0 | P0 | KEV |
| CVE-2020-17144 | Microsoft Exchange Server | 0.0 | P0 | KEV |
| CVE-2021-34523 | Microsoft Exchange Server | 0.0 | P0 | KEV |
| CVE-2020-0688 | Microsoft Exchange Server | 0.0 | P0 | KEV |
| CVE-2021-34473 | Microsoft Exchange Server | 0.0 | P0 | KEV |
| CVE-2021-34527 | Microsoft Windows | 0.0 | P0 | KEV |
| CVE-2021-31207 | Microsoft Exchange Server | 0.0 | P0 | KEV |
| CVE-2021-26411 | Microsoft Internet Explorer | 0.0 | P0 | KEV |
| CVE-2021-40444 | Microsoft MSHTML | 0.0 | P0 | KEV |
| CVE-2020-1472 | Microsoft Netlogon | 0.0 | P0 | KEV |
| CVE-2021-26855 | Microsoft Exchange Server | 0.0 | P0 | KEV |
| CVE-2021-26858 | Microsoft Exchange Server | 0.0 | P0 | KEV |
| CVE-2021-27065 | Microsoft Exchange Server | 0.0 | P0 | KEV |
| CVE-2019-0604 | Microsoft SharePoint | 0.0 | P0 | KEV |
| CVE-2021-26857 | Microsoft Exchange Server | 0.0 | P0 | KEV |
| CVE-2019-11510 | Ivanti Pulse Connect Secure | 0.0 | P0 | KEV |
| CVE-2021-20016 | SonicWall SSLVPN SMA100 | 0.0 | P0 | KEV |
| CVE-2021-22005 | VMware vCenter Server | 0.0 | P0 | KEV |
| CVE-2021-21985 | VMware vCenter Server | 0.0 | P0 | KEV |
| CVE-2020-10189 | Zoho ManageEngine | 0.0 | P0 | KEV |
| CVE-2026-47392 | pip praisonaiagents | 9.9 | P1 | |
| CVE-2026-47429 | npm vitest | 9.8 | P1 | |
| CVE-2026-46614 | go github.com/fission/fission | 9.8 | P1 | |
| CVE-2026-47410 | pip praisonai-platform | 9.8 | P1 | |
| CVE-2026-47391 | pip PraisonAI | 9.8 | P1 | |
| CVE-2026-47393 | pip PraisonAI | 9.8 | P1 | |
| CVE-2026-47396 | pip PraisonAI | 9.8 | P1 | |
| CVE-2026-8838 | pip redshift-connector | 9.8 | P1 | |
| CVE-2026-44180 | pip jupyter_enterprise_gateway | 9.8 | P1 | |
| CVE-2026-47413 | pip praisonai-platform | 9.6 | P1 | |
| CVE-2026-47428 | npm @vitest/browser | 9.6 | P1 | |
| CVE-2026-47416 | pip praisonai-platform | 9.6 | P1 | |
| CVE-2026-42087 | rubygems openc3 | 9.6 | P1 | |
| CVE-2026-34926 | Trend Micro Apex One | 6.7 | P1 | KEV |
| CVE-2022-41328 | Fortinet FortiOS | 6.7 | P1 | KEV |
| CVE-2024-20399 | Cisco NX-OS | 6.0 | P1 | KEV |
| CVE-2024-20359 | Cisco Adaptive Security Appliance (ASA) an | 6.0 | P1 | KEV |
| CVE-2026-47335 | Ubuntu | 5.5 | P1 | |
| CVE-2023-20269 | Cisco Adaptive Security Appliance and Fire | 5.0 | P1 | KEV |
| CVE-2026-45498 | Microsoft Defender | 4.0 | P1 | KEV |
| CVE-2026-44018 | pip docling | 5.5 | P2 | |
| CVE-2026-44428 | go github.com/modelcontextprotocol/registr | 4.7 | P2 | |
| CVE-2026-6343 | go github.com/mattermost/mattermost/server | 4.3 | P2 | |
| CVE-2026-6340 | go github.com/mattermost/mattermost/server | 4.3 | P2 | |
| CVE-2026-33117 | maven com.azure:azure-security-keyvault-ke | 9.1 | P3 | |
| CVE-2026-4286 | go github.com/mattermost/mattermost/server | 3.1 | P3 | |
| CVE-2020-2021 | Palo Alto Networks PAN-OS | 0.0 | P3 | KEV |
| CVE-2021-27104 | Accellion FTA | 0.0 | P3 | KEV |
| CVE-2021-27102 | Accellion FTA | 0.0 | P3 | KEV |
| CVE-2021-27101 | Accellion FTA | 0.0 | P3 | KEV |
| CVE-2017-0199 | Microsoft Office and WordPad | 0.0 | P3 | KEV |
| CVE-2020-4006 | VMware Multiple Products | 0.0 | P3 | KEV |
| CVE-2023-35036 | 0.0 | P3 | ||
| CVE-2023-35708 | 0.0 | P3 | ||
| CVE-2026-43284 | Ubuntu | 0.0 | P3 | |
| CVE-2026-43500 | Ubuntu | 0.0 | P3 | |
| CVE-2024-12905 | Ubuntu | 0.0 | P3 | |
| CVE-2025-48387 | Ubuntu | 0.0 | P3 |