Post-EoL Security Exposure

Devices past their security-support date that are named in CISA's Known Exploited Vulnerabilities catalog.

This is not a CVE search tool. Every entry below is a specific device in our catalog that (1) is past the vendor's end-of-vulnerability-security-support or last-date-of-support date and (2) runs a platform listed in CISA's Known Exploited Vulnerabilities (KEV) catalog. The vendor is not patching these devices. The vulnerabilities are being exploited in the wild.

Correlation is at the platform level (Junos OS, PAN-OS, BIG-IP, SonicOS, Firebox, etc.). A specific CVE may affect only certain OS versions; the device may or may not have received the patch before the vendor cut off support. Assume exposure unless you've confirmed otherwise.

922

exposed devices

distinct CVEs

1569

KEV entries tracked

By vendor

Vendor	Exposed devices	Distinct CVEs	Ransomware-linked
Juniper	705	7	0
WatchGuard	92	4	0
SonicWall	53	3	2
F5 Networks	33	5	3
Sophos	23	3	0
Palo Alto	16	10	5

Most recent exposures

Top 200 of 922 flagged devices, ordered by most recent KEV addition date.

Newest CVE added	Device	Vendor	CVE count
2026-03-27	`1000`	F5 Networks	5
2026-03-27	`11000`	F5 Networks	5
2026-03-27	`11050`	F5 Networks	5
2026-03-27	`1500`	F5 Networks	5
2026-03-27	`1600`	F5 Networks	5
2026-03-27	`2000s`	F5 Networks	5
2026-03-27	`2200s`	F5 Networks	5
2026-03-27	`3400`	F5 Networks	5
2026-03-27	`3410`	F5 Networks	5
2026-03-27	`3600`	F5 Networks	5
2026-03-27	`3900`	F5 Networks	5
2026-03-27	`4000s`	F5 Networks	5
2026-03-27	`4200v`	F5 Networks	5
2026-03-27	`5000s`	F5 Networks	5
2026-03-27	`5050s`	F5 Networks	5
2026-03-27	`5100`	F5 Networks	5
2026-03-27	`520`	F5 Networks	5
2026-03-27	`5200v`	F5 Networks	5
2026-03-27	`5250v`	F5 Networks	5
2026-03-27	`540`	F5 Networks	5
2026-03-27	`6400`	F5 Networks	5
2026-03-27	`6800`	F5 Networks	5
2026-03-27	`6900`	F5 Networks	5
2026-03-27	`6900s`	F5 Networks	5
2026-03-27	`7000s`	F5 Networks	5
2026-03-27	`7050s`	F5 Networks	5
2026-03-27	`7250v`	F5 Networks	5
2026-03-27	`8400`	F5 Networks	5
2026-03-27	`8800`	F5 Networks	5
2026-03-27	`8900`	F5 Networks	5
2026-03-27	`8950`	F5 Networks	5
2026-03-27	`8950s`	F5 Networks	5
2026-03-27	`4400`	F5 Networks	5
2025-12-19	Firebox II	WatchGuard	4
2025-12-19	Firebox II+	WatchGuard	4
2025-12-19	Firebox II+ Fast VPN	WatchGuard	4
2025-12-19	Firebox M200	WatchGuard	4
2025-12-19	Firebox M300	WatchGuard	4
2025-12-19	Firebox M400	WatchGuard	4
2025-12-19	Firebox M440	WatchGuard	4
2025-12-19	Firebox M500	WatchGuard	4
2025-12-19	Firebox S6	WatchGuard	4
2025-12-19	Firebox SOHO 6 This end-of-life schedule also applies to legacy SOHO models.	WatchGuard	4
2025-12-19	Firebox SOHO 6 Wireless	WatchGuard	4
2025-12-19	Firebox SSL Core VPN Gateway	WatchGuard	4
2025-12-19	Firebox T10	WatchGuard	4
2025-12-19	Firebox T10-D	WatchGuard	4
2025-12-19	Firebox T10-W	WatchGuard	4
2025-12-19	Firebox T30	WatchGuard	4
2025-12-19	Firebox T30-W	WatchGuard	4
2025-12-19	Firebox T35	WatchGuard	4
2025-12-19	Firebox T35-W	WatchGuard	4
2025-12-19	Firebox T50	WatchGuard	4
2025-12-19	Firebox T50-W	WatchGuard	4
2025-12-19	Firebox T55	WatchGuard	4
2025-12-19	Firebox T55-W	WatchGuard	4
2025-12-19	Firebox T70	WatchGuard	4
2025-12-19	Firebox Vclass Non-V200 models Japan Only	WatchGuard	4
2025-12-19	Firebox Vclass Non-V200 models Outside Japan	WatchGuard	4
2025-12-19	Firebox Vclass V200	WatchGuard	4
2025-12-19	Firebox X Core X1000	WatchGuard	4
2025-12-19	Firebox X Core X1250e	WatchGuard	4
2025-12-19	Firebox X Core X2500	WatchGuard	4
2025-12-19	Firebox X Core X500	WatchGuard	4
2025-12-19	Firebox X Core X550e	WatchGuard	4
2025-12-19	Firebox X Core X700	WatchGuard	4
2025-12-19	Firebox X Core X750e	WatchGuard	4
2025-12-19	Firebox X Edge X10e	WatchGuard	4
2025-12-19	Firebox X Edge X10e-W	WatchGuard	4
2025-12-19	Firebox X Edge X15	WatchGuard	4
2025-12-19	Firebox X Edge X15W	WatchGuard	4
2025-12-19	Firebox X Edge X20e	WatchGuard	4
2025-12-19	Firebox X Edge X20e-W	WatchGuard	4
2025-12-19	Firebox X Edge X5	WatchGuard	4
2025-12-19	Firebox X Edge X50	WatchGuard	4
2025-12-19	Firebox X Edge X50W	WatchGuard	4
2025-12-19	Firebox X Edge X55e	WatchGuard	4
2025-12-19	Firebox X Edge X55e-W	WatchGuard	4
2025-12-19	Firebox X Edge X5W	WatchGuard	4
2025-12-19	Firebox X Peak X5000	WatchGuard	4
2025-12-19	Firebox X Peak X5500e	WatchGuard	4
2025-12-19	Firebox X Peak X6000	WatchGuard	4
2025-12-19	Firebox X Peak X6500e	WatchGuard	4
2025-12-19	Firebox X Peak X8000	WatchGuard	4
2025-12-19	Firebox X Peak X8500e	WatchGuard	4
2025-12-19	Firebox X Peak X8500e-F	WatchGuard	4
2025-03-13	`ACX2000-DC`	Juniper	7
2025-03-13	`ACX2000-DC-BASE`	Juniper	7
2025-03-13	`ACX500-GPS-KIT`	Juniper	7
2025-03-13	`ACX500-O-AC`	Juniper	7
2025-03-13	`ACX500-O-DC`	Juniper	7
2025-03-13	`ACX500-O-POE-AC`	Juniper	7
2025-03-13	`ACX500-O-POE-DC`	Juniper	7
2025-03-13	`EX2200-24P-4G`	Juniper	7
2025-03-13	`EX2200-24P-4G-TAA`	Juniper	7
2025-03-13	`EX2200-24T-4G`	Juniper	7
2025-03-13	`EX2200-24T-4G-DC`	Juniper	7
2025-03-13	`EX2200-24T-4G-TAA`	Juniper	7
2025-03-13	`EX2200-48P-4G`	Juniper	7
2025-03-13	`EX2200-48P-4G-TAA`	Juniper	7
2025-03-13	`EX2200-48T-4G`	Juniper	7
2025-03-13	`EX2200-48T-4G-TAA`	Juniper	7
2025-03-13	`EX2200-BOX-10`	Juniper	7
2025-03-13	`EX2200-C-12P-2G`	Juniper	7
2025-03-13	`EX2200-C-12P2G-TAA`	Juniper	7
2025-03-13	`EX2200-C-12T-2G`	Juniper	7
2025-03-13	`EX2500-24F-BF`	Juniper	7
2025-03-13	`EX2500-24F-FB`	Juniper	7
2025-03-13	`EX3200-24P`	Juniper	7
2025-03-13	`EX3200-24P-TAA`	Juniper	7
2025-03-13	`EX3200-24T`	Juniper	7
2025-03-13	`EX3200-24T-DC`	Juniper	7
2025-03-13	`EX3200-24T-TAA`	Juniper	7
2025-03-13	`EX3200-48P`	Juniper	7
2025-03-13	`EX3200-48P-TAA`	Juniper	7
2025-03-13	`EX3200-48T`	Juniper	7
2025-03-13	`EX3200-48T-DC`	Juniper	7
2025-03-13	`EX3200-48T-TAA`	Juniper	7
2025-03-13	`EX3300-24P`	Juniper	7
2025-03-13	`EX3300-24P-TAA`	Juniper	7
2025-03-13	`EX3300-24T`	Juniper	7
2025-03-13	`EX3300-24T-DC`	Juniper	7
2025-03-13	`EX3300-24T-DC-TAA`	Juniper	7
2025-03-13	`EX3300-24T-TAA`	Juniper	7
2025-03-13	`EX3300-48P`	Juniper	7
2025-03-13	`EX3300-48P-TAA`	Juniper	7
2025-03-13	`EX3300-48T`	Juniper	7
2025-03-13	`EX3300-48T-BF`	Juniper	7
2025-03-13	`EX3300-48T-BF-TAA`	Juniper	7
2025-03-13	`EX3300-48T-TAA`	Juniper	7
2025-03-13	`EX4200-24F`	Juniper	7
2025-03-13	`EX4200-24F-DC`	Juniper	7
2025-03-13	`EX4200-24F-DC-TAA`	Juniper	7
2025-03-13	`EX4200-24F-S`	Juniper	7
2025-03-13	`EX4200-24F-TAA`	Juniper	7
2025-03-13	`EX4200-24P`	Juniper	7
2025-03-13	`EX4200-24PX`	Juniper	7
2025-03-13	`EX4200-24PX-TAA`	Juniper	7
2025-03-13	`EX4200-24T`	Juniper	7
2025-03-13	`EX4200-24T-DC`	Juniper	7
2025-03-13	`EX4200-24T-TAA`	Juniper	7
2025-03-13	`EX4200-48P`	Juniper	7
2025-03-13	`EX4200-48PX`	Juniper	7
2025-03-13	`EX4200-48PX-TAA`	Juniper	7
2025-03-13	`EX4200-48T`	Juniper	7
2025-03-13	`EX4200-48T-DC`	Juniper	7
2025-03-13	`EX4200-48T-S`	Juniper	7
2025-03-13	`EX4200-48T-TAA`	Juniper	7
2025-03-13	`EX4200-BOX-10`	Juniper	7
2025-03-13	`EX4500-40F-BF`	Juniper	7
2025-03-13	`EX4500-40F-BF-C`	Juniper	7
2025-03-13	`EX4500-40F-DC-C`	Juniper	7
2025-03-13	`EX4500-40F-FB`	Juniper	7
2025-03-13	`EX4500-40F-FB-C`	Juniper	7
2025-03-13	`EX4500-40F-VC1-BF`	Juniper	7
2025-03-13	`EX4500-40F-VC1-BF-TAA`	Juniper	7
2025-03-13	`EX4500-40F-VC1-DC`	Juniper	7
2025-03-13	`EX4500-40F-VC1-FB`	Juniper	7
2025-03-13	`EX4500-40F-VC1-FB-TAA`	Juniper	7
2025-03-13	`EX4500-LB`	Juniper	7
2025-03-13	`EX4500-PWR1-AC-BF`	Juniper	7
2025-03-13	`EX4500-PWR1-AC-FB`	Juniper	7
2025-03-13	`EX4500-PWR1-DC`	Juniper	7
2025-03-13	`EX4500-UM-4XSFP`	Juniper	7
2025-03-13	`EX4500-VC1-128G`	Juniper	7
2025-03-13	`EX4550-32F-AFI`	Juniper	7
2025-03-13	`EX4550-32F-AFO`	Juniper	7
2025-03-13	`EX4550-32F-DC-AFI`	Juniper	7
2025-03-13	`EX4550-32F-DC-AFO`	Juniper	7
2025-03-13	`EX4550-32F-S`	Juniper	7
2025-03-13	`EX4550-32T-AFI`	Juniper	7
2025-03-13	`EX4550-32T-AFO`	Juniper	7
2025-03-13	`EX4550-32T-DC-AFI`	Juniper	7
2025-03-13	`EX4550-32T-DC-AFO`	Juniper	7
2025-03-13	`EX4550-EM-2QSFP`	Juniper	7
2025-03-13	`EX4550-EM-8XSFP`	Juniper	7
2025-03-13	`EX4550-EM-8XT`	Juniper	7
2025-03-13	`EX4550-FANMODULE-AFI`	Juniper	7
2025-03-13	`EX4550-FANMODULE-AFO`	Juniper	7
2025-03-13	`EX4550-VC1-128G`	Juniper	7
2025-03-13	`EX4550F-AFI-TAA`	Juniper	7
2025-03-13	`EX4550F-AFO-TAA`	Juniper	7
2025-03-13	`EX4550F-DC-AFI-TAA`	Juniper	7
2025-03-13	`EX4550F-DC-AFO-TAA`	Juniper	7
2025-03-13	`EX4550T-AFI-TAA`	Juniper	7
2025-03-13	`EX4550T-AFO-TAA`	Juniper	7
2025-03-13	`EX4550T-DC-AFI-TAA`	Juniper	7
2025-03-13	`EX4550T-DC-AFO-TAA`	Juniper	7
2025-03-13	`EX6200-48F`	Juniper	7
2025-03-13	`EX6200-48P`	Juniper	7
2025-03-13	`EX6200-48T`	Juniper	7
2025-03-13	`EX6200-PWR-AC2500`	Juniper	7
2025-03-13	`EX6200-PWR-AC5000`	Juniper	7
2025-03-13	`EX6200-SRE64-4XS`	Juniper	7
2025-03-13	`EX6200-SUPPORT-BRKT`	Juniper	7
2025-03-13	`EX6210-CHAS`	Juniper	7
2025-03-13	`EX6210-FLTR`	Juniper	7
2025-03-13	`EX6210-PKG`	Juniper	7
2025-03-13	`EX6210-S64-96P-A25`	Juniper	7
2025-03-13	`EX6210-S64-96P-A50`	Juniper	7

Operators running any device in this list should treat it as a compensating-control scenario under NIST SA-22 and the equivalent PCI-DSS, HIPAA, and cyber-insurance guidance. See the Compliance and Insurance page for clause-level context and control options.

CISA KEV snapshot refreshed via scripts/refresh_kev.py. Source data: CISA Known Exploited Vulnerabilities catalog.