Research org contributor

Cisco Talos

cited as evidence in 50 · CNA assigner on 2 (independent) of 52 known-exploited records. Every aggregate on this page is recomputed from the records listed below — each one already cited to its public source.

blog.talosintelligence.com ↗ · home of the cited advisories

Independent CNA

records cited in

deterministic count

finder / reporter credits

CVE.org credits

CVE records catalogued (CNA)

independent

69%

avg modeled exploit prob.

FIRST EPSS, 52/52

25%

ransomware-associated

13 of 52 · CISA flag

Known for

— recomputed from this contributor’s own records

SurfacesApplication / other (24), Operating system / kernel (11), Browser (6), Server / web platform (6), Edge / remote-access infra (3)

WeaknessMemory safety (12), Injection (12), Authorization / access control (6), Path traversal / file (4), Authentication (3)

PortfolioCisco (13), Microsoft (9), Adobe (5), Google (4), GNU (3), Oracle (2)

Narrative reach

— how far this contributor’s records carry an attacker, front door → lights out

1Front door

52reach this stage

→

2Keys to the kingdom

52reach this stage

→

3Lateral reach

49reach this stage

→

4Data at risk

10reach this stage

→

5Lights out

2reach this stage

Furthest any of these records carries an attacker: 5 · Lights out. 10 of 52 narrative-framed records reach data-at-risk or lights-out. (furthest-position idiom, reused from the landing map; the stage mapping is a model output over cited evidence.)

Recent highlights

— this contributor’s newest known-exploited records

CVE-2026-20182Cisco76%KEV CVE-2026-20122Cisco6%KEV CVE-2026-20133Cisco9%KEV CVE-2026-21385Qualcomm1%KEV CVE-2022-20775Cisco12%KEV CVE-2026-20127Cisco48%KEV

Every record they’re cited in

— all 52, each linked to its cited source

This is the evidence behind every number above. Sorted ransomware-first, then by modeled exploit probability.

CVE-2018-7600Drupal100%RWKEV CVE-2019-2725Oracle100%RWKEV CVE-2021-3129Laravel100%RWKEV CVE-2017-10271Oracle100%RWKEV CVE-2021-34527Microsoft100%RWKEV CVE-2019-18935Progress100%RWKEV CVE-2021-21972VMware100%RWKEV CVE-2008-2992Adobe98%RWKEV CVE-2018-8174Microsoft88%RWKEV CVE-2021-1675Microsoft86%RWKEV CVE-2021-30116Kaseya83%RWKEV CVE-2021-36942Microsoft66%RWKEV CVE-2022-31199Netwrix36%RWKEV CVE-2014-6271GNU100%KEV CVE-2018-11776Apache100%KEV CVE-2017-12617Apache100%KEV CVE-2014-7169GNU100%KEV CVE-2018-0296Cisco100%KEV CVE-2020-7961Liferay100%KEV CVE-2017-1000353Jenkins100%KEV CVE-2014-6278GNU100%KEV CVE-2023-20198Cisco100%KEV CVE-2017-3881Cisco99%KEV CVE-2009-0927Adobe97%KEV CVE-2009-1151phpMyAdmin95%KEV CVE-2007-5659Adobe94%KEV CVE-2017-3066Adobe91%KEV CVE-2017-8570Microsoft90%KEV CVE-2023-20273Cisco90%KEV CVE-2013-3893Microsoft86%KEV CVE-2014-0322Microsoft85%KEV CVE-2025-20362Cisco84%KEV CVE-2009-4324Adobe82%KEV CVE-2026-20182Cisco76%KEV CVE-2018-0824Microsoft73%KEV CVE-2017-6736Cisco71%KEV CVE-2026-20127Cisco48%KEV CVE-2021-40407Reolink48%KEV CVE-2013-3660Microsoft40%KEV CVE-2021-38003Google36%KEV CVE-2025-20333Cisco29%KEV CVE-2025-20393Cisco29%KEV CVE-2018-4063Sierra Wireless28%KEV CVE-2021-37976Google20%KEV CVE-2022-20775Cisco12%KEV CVE-2021-37973Google12%KEV CVE-2026-20133Cisco9%KEV CVE-2026-20122Cisco6%KEV CVE-2021-38000Google4%KEV CVE-2025-22224VMware2%KEV CVE-2026-21385Qualcomm1%KEV CVE-2021-1048Android1%KEV

Coverage & confidence

— what this profile claims, and what it does not

Established (cited)

Cited in 52 known-exploited records — the list below; every one links to its public source.

Catalogued 2 CVE record(s) as the CNA assigner (from CVE.org).

Coverage gaps — stated, not hidden

This profile is an aggregation: it asserts only what the listed records already cite — no new external claim about the contributor is made.

The TYPE badge and the narrative-stage mapping are editorial (our call), labeled as such, not a sourced fact.