Home/Resources/Security Exposure

Post-EoL Security Exposure

Devices past their security-support date that are named in CISA's Known Exploited Vulnerabilities catalog.

This is not a CVE search tool. Every entry below is a specific device in our catalog that (1) is past the vendor's end-of-vulnerability-security-support or last-date-of-support date and (2) runs a platform listed in CISA's Known Exploited Vulnerabilities (KEV) catalog. The vendor is not patching these devices. The vulnerabilities are being exploited in the wild.

Correlation is at the platform level (Junos OS, PAN-OS, BIG-IP, SonicOS, Firebox, etc.). A specific CVE may affect only certain OS versions; the device may or may not have received the patch before the vendor cut off support. Assume exposure unless you've confirmed otherwise.

36
models on affected platforms
179
distinct CVEs
1647
KEV entries tracked

By vendor

Counts reflect post-EoL models running on an affected platform. A specific firmware version may not be vulnerable — verify with the vendor's PSIRT advisory.

Vendor Models on platform Distinct CVEs Ransomware-linked
Juniper 965 7 0
Cisco 815 60 3
Fortinet 514 24 12
Arista 201 1 0
QNAP 124 10 9
WatchGuard 92 4 0
SonicWall 84 16 9
Check Point 72 2 2
Sophos 39 3 0
NETGEAR 36 2 0
F5 Networks 33 7 4
Palo Alto 16 12 5
D-Link 13 14 1
Zyxel 12 1 0
Citrix 4 16 4

Flagged models

Clear filters

36 flagged devices (netgear).

Newest CVE added Device Vendor CVEs Ransom
WN604-100AUS NETGEAR 1
WN604-100NAS NETGEAR 1
WN604-100PES NETGEAR 1
WN604-100UKS NETGEAR 1
WNAP210-200AUS NETGEAR 1
WNAP210-200INS NETGEAR 1
WNAP210-200NAS NETGEAR 1
WNAP210-200PES NETGEAR 1
WNAP210-200PRS NETGEAR 1
WNAP210-200UKS NETGEAR 1
WNAP320-100AUS NETGEAR 1
WNAP320-100INS NETGEAR 1
WNAP320-100JPS NETGEAR 1
WNAP320-100NAS NETGEAR 1
WNAP320-100PES NETGEAR 1
WNAP320-100PRS NETGEAR 1
WNAP320-100UKS NETGEAR 1
WND930-10000S NETGEAR 1
WND930-100JPS NETGEAR 1
WND930-100NAS NETGEAR 1
WNDAP350-100AUS NETGEAR 1
WNDAP350-100NAS NETGEAR 1
WNDAP350-100PES NETGEAR 1
WNDAP350-100UKS NETGEAR 1
WNDAP360-100AJS NETGEAR 1
WNDAP360-100INS NETGEAR 1
WNDAP360-100JPS NETGEAR 1
WNDAP360-100NAS NETGEAR 1
WNDAP360-100PES NETGEAR 1
WNDAP360-100PRS NETGEAR 1
WNDAP360-100UKS NETGEAR 1
JGS516PE-100AJS NETGEAR 1
JGS516PE-100EUS NETGEAR 1
JGS516PE-100INS NETGEAR 1
JGS516PE-100NAS NETGEAR 1
JGS516PE-100PRS NETGEAR 1

Operators running any device in this list should treat it as a compensating-control scenario under NIST SA-22 and the equivalent PCI-DSS, HIPAA, and cyber-insurance guidance. See the Compliance and Insurance page for clause-level context and control options.

Source: CISA Known Exploited Vulnerabilities catalog. Snapshot refreshed weekly.

↑ Top