What is CISA's Known Exploited Vulnerabilities Catalog?

CISA's Known Exploited Vulnerabilities (KEV) Catalog is a compilation of documented security vulnerabilities that have been successfully exploited, as well as vulnerabilities associated with ransomware campaigns

We strongly recommend that all organizations review and monitor the KEV catalog and prioritize remediation of the listed vulnerabilities to reduce the likelihood of compromise by known threat actors.

Holm Security Uses CISA's KEV catalog as one of the sources of information about exploited and known to be used in ransomware campaigns vulnerabilities

Known Exploited Vulnerabilities Catalog (external link):
https://www.cisa.gov/known-exploited-vulnerabilities-catalog