Post-EoL Security Exposure
Devices past their security-support date that are named in CISA's Known Exploited Vulnerabilities catalog.
This is not a CVE search tool. Every entry below is a specific device in our catalog that (1) is past the vendor's end-of-vulnerability-security-support or last-date-of-support date and (2) runs a platform listed in CISA's Known Exploited Vulnerabilities (KEV) catalog. The vendor is not patching these devices. The vulnerabilities are being exploited in the wild.
Correlation is at the platform level (Junos OS, PAN-OS, BIG-IP, SonicOS, Firebox, etc.). A specific CVE may affect only certain OS versions; the device may or may not have received the patch before the vendor cut off support. Assume exposure unless you've confirmed otherwise.
By vendor
Counts reflect post-EoL models running on an affected platform. A specific firmware version may not be vulnerable — verify with the vendor's PSIRT advisory.
| Vendor | Models on platform | Distinct CVEs | Ransomware-linked |
|---|---|---|---|
| Juniper | 965 | 7 | 0 |
| Cisco | 815 | 60 | 3 |
| Fortinet | 514 | 24 | 12 |
| Arista | 201 | 1 | 0 |
| QNAP | 124 | 10 | 9 |
| WatchGuard | 92 | 4 | 0 |
| SonicWall | 84 | 16 | 9 |
| Check Point | 72 | 2 | 2 |
| Sophos | 39 | 3 | 0 |
| NETGEAR | 36 | 2 | 0 |
| F5 Networks | 33 | 7 | 4 |
| Palo Alto | 16 | 12 | 5 |
| D-Link | 13 | 14 | 1 |
| Zyxel | 12 | 1 | 0 |
| Citrix | 4 | 16 | 4 |
Flagged models
124 flagged devices (qnap).
| Newest CVE added | Device | Vendor | CVEs | Ransom |
|---|---|---|---|---|
HS-210 |
QNAP | 10 | Yes | |
HS-251 |
QNAP | 10 | Yes | |
| IS-400 Pro | QNAP | 10 | Yes | |
| SS-439 Pro | QNAP | 10 | Yes | |
| SS-839 Pro | QNAP | 10 | Yes | |
SS-EC1279U-SAS-RP |
QNAP | 10 | Yes | |
SS-EC1879U-SAS-RP |
QNAP | 10 | Yes | |
SS-EC2479U-SAS-RP |
QNAP | 10 | Yes | |
TAS-168 |
QNAP | 10 | Yes | |
TAS-268 |
QNAP | 10 | Yes | |
TS-100 |
QNAP | 10 | Yes | |
TS-101 |
QNAP | 10 | Yes | |
| TS-1079 Pro | QNAP | 10 | Yes | |
TS-109 |
QNAP | 10 | Yes | |
| TS-109 II | QNAP | 10 | Yes | |
| TS-109 Pro | QNAP | 10 | Yes | |
| TS-109 Pro II | QNAP | 10 | Yes | |
TS-110 |
QNAP | 10 | Yes | |
TS-112 |
QNAP | 10 | Yes | |
TS-112P |
QNAP | 10 | Yes | |
TS-119 |
QNAP | 10 | Yes | |
TS-119P+ |
QNAP | 10 | Yes | |
| TS-119P II | QNAP | 10 | Yes | |
TS-120 |
QNAP | 10 | Yes | |
TS-121 |
QNAP | 10 | Yes | |
TS-1269U-RP |
QNAP | 10 | Yes | |
TS-1270U-RP |
QNAP | 10 | Yes | |
TS-1279U-RP |
QNAP | 10 | Yes | |
TS-128 |
QNAP | 10 | Yes | |
TS-131 |
QNAP | 10 | Yes | |
TS-1679U-RP |
QNAP | 10 | Yes | |
TS-201 |
QNAP | 10 | Yes | |
| TS-209 II | QNAP | 10 | Yes | |
| TS-209 Pro | QNAP | 10 | Yes | |
| TS-209 Pro II | QNAP | 10 | Yes | |
TS-210 |
QNAP | 10 | Yes | |
TS-212 |
QNAP | 10 | Yes | |
TS-212-E |
QNAP | 10 | Yes | |
TS-212P |
QNAP | 10 | Yes | |
TS-219 |
QNAP | 10 | Yes | |
TS-219P |
QNAP | 10 | Yes | |
TS-219P+ |
QNAP | 10 | Yes | |
| TS-219P II | QNAP | 10 | Yes | |
TS-220 |
QNAP | 10 | Yes | |
TS-221 |
QNAP | 10 | Yes | |
TS-228 |
QNAP | 10 | Yes | |
TS-231 |
QNAP | 10 | Yes | |
| TS-239 Pro | QNAP | 10 | Yes | |
| TS-239 Pro II | QNAP | 10 | Yes | |
| TS-239 Pro II+ | QNAP | 10 | Yes | |
TS-251C |
QNAP | 10 | Yes | |
| TS-259 Pro | QNAP | 10 | Yes | |
| TS-259 Pro+ | QNAP | 10 | Yes | |
| TS-269 Pro | QNAP | 10 | Yes | |
TS-269H |
QNAP | 10 | Yes | |
TS-269L |
QNAP | 10 | Yes | |
TS-409 |
QNAP | 10 | Yes | |
| TS-409 Pro | QNAP | 10 | Yes | |
TS-409U |
QNAP | 10 | Yes | |
TS-410 |
QNAP | 10 | Yes | |
TS-410U |
QNAP | 10 | Yes | |
TS-412 |
QNAP | 10 | Yes | |
TS-412U |
QNAP | 10 | Yes | |
TS-419P |
QNAP | 10 | Yes | |
TS-419P+ |
QNAP | 10 | Yes | |
| TS-419P II | QNAP | 10 | Yes | |
TS-419U |
QNAP | 10 | Yes | |
TS-419U+ |
QNAP | 10 | Yes | |
| TS-419U II | QNAP | 10 | Yes | |
TS-420 |
QNAP | 10 | Yes | |
TS-420U |
QNAP | 10 | Yes | |
TS-421 |
QNAP | 10 | Yes | |
TS-421U |
QNAP | 10 | Yes | |
TS-431 |
QNAP | 10 | Yes | |
TS-431U |
QNAP | 10 | Yes | |
| TS-439 Pro | QNAP | 10 | Yes | |
| TS-439 Pro II | QNAP | 10 | Yes | |
| TS-439 Pro II+ | QNAP | 10 | Yes | |
TS-439U-RP |
QNAP | 10 | Yes | |
TS-439U-SP |
QNAP | 10 | Yes | |
| TS-459 Pro | QNAP | 10 | Yes | |
| TS-459 Pro+ | QNAP | 10 | Yes | |
| TS-459 Pro II | QNAP | 10 | Yes | |
| TS-469 Pro | QNAP | 10 | Yes | |
TS-469L |
QNAP | 10 | Yes | |
TS-469U-RP |
QNAP | 10 | Yes | |
TS-469U-SP |
QNAP | 10 | Yes | |
TS-470 |
QNAP | 10 | Yes | |
| TS-470 Pro | QNAP | 10 | Yes | |
TS-470U-RP |
QNAP | 10 | Yes | |
TS-470U-SP |
QNAP | 10 | Yes | |
| TS-509 Pro | QNAP | 10 | Yes | |
| TS-559 Pro | QNAP | 10 | Yes | |
| TS-559 Pro+ | QNAP | 10 | Yes | |
| TS-559 Pro II | QNAP | 10 | Yes | |
| TS-569 Pro | QNAP | 10 | Yes | |
TS-569L |
QNAP | 10 | Yes | |
| TS-639 Pro | QNAP | 10 | Yes | |
| TS-659 Pro | QNAP | 10 | Yes | |
| TS-659 Pro+ | QNAP | 10 | Yes | |
| TS-659 Pro II | QNAP | 10 | Yes | |
| TS-669 Pro | QNAP | 10 | Yes | |
TS-669L |
QNAP | 10 | Yes | |
TS-670 |
QNAP | 10 | Yes | |
| TS-670 Pro | QNAP | 10 | Yes | |
| TS-809 Pro | QNAP | 10 | Yes | |
TS-809U-RP |
QNAP | 10 | Yes | |
| TS-859 Pro | QNAP | 10 | Yes | |
| TS-859 Pro+ | QNAP | 10 | Yes | |
TS-859U-RP |
QNAP | 10 | Yes | |
TS-859U-RP+ |
QNAP | 10 | Yes | |
| TS-869 Pro | QNAP | 10 | Yes | |
TS-869L |
QNAP | 10 | Yes | |
TS-869U-RP |
QNAP | 10 | Yes | |
TS-870 |
QNAP | 10 | Yes | |
| TS-870 Pro | QNAP | 10 | Yes | |
TS-870U-RP |
QNAP | 10 | Yes | |
| TS-879 Pro | QNAP | 10 | Yes | |
TS-879U-RP |
QNAP | 10 | Yes | |
TS-EC1279U-RP |
QNAP | 10 | Yes | |
TS-EC1279U-SAS-RP |
QNAP | 10 | Yes | |
TS-EC1679U-RP |
QNAP | 10 | Yes | |
TS-EC1679U-SAS-RP |
QNAP | 10 | Yes | |
TS-EC879U-RP |
QNAP | 10 | Yes |
Operators running any device in this list should treat it as a compensating-control scenario under NIST SA-22 and the equivalent PCI-DSS, HIPAA, and cyber-insurance guidance. See the Compliance and Insurance page for clause-level context and control options.
Source: CISA Known Exploited Vulnerabilities catalog. Snapshot refreshed weekly.