← Assessment Tool|20x Resource Hub
Last commit:Mar 17, 2026
·
Verified current as of Mar 30, 2026
v0.9.42-beta
FRD-KEVformerly FRD-ALL-25

Known Exploited Vulnerability (KEV)

Definition

Has the meaning given in CISA Binding Operational Directive 22-01, which is any vulnerability identified in CISA's Known Exploited Vulnerabilities catalog.

Also Referred To As

known exploited vulnerabilityknown exploited vulnerabilitiesKEVKEVs

Used in FedRAMP KSI Requirements

This term appears in FedRAMP Key Security Indicator statements. Understanding its precise definition is critical for accurate self-assessment.

Browse KSI themes →
Back to GlossaryOpen Assessment Tool →