# CISA KEV / BOD 22-01 Deadline Planner

> Free local-first, no-tracking CISA Known Exploited Vulnerabilities and BOD 22-01 due-date planner for pasted CVEs and scanner output.

Site: https://kev-deadline-planner.vercel.app/
Source: https://github.com/Turner-Levey/kev-deadline-planner
Preview image: https://kev-deadline-planner.vercel.app/preview.png
Project notes: https://kev-deadline-planner.vercel.app/about.html
h4cker threat-intelligence tools listing: https://github.com/The-Art-of-Hacking/h4cker/blob/master/cybersecurity-domains/defensive-security/threat-intelligence/tools.md
Tiny Tool Town listing: https://www.tinytooltown.com/tools/cisa-kev-deadline-planner/
Awesome Compliance listing: https://github.com/theopenlane/awesome-compliance#open-source-platforms
No-Login Tools listing: https://nologin.tools/tool/kev-deadline-planner-vercel-app/
No-Login Tools badge: https://nologin.tools/badge/kev-deadline-planner-vercel-app/
IndexNow key file: https://kev-deadline-planner.vercel.app/4f2e8d9c6b7a4f3a9e1c0d8b6a2f4c1e.txt

## Tool

- [CISA KEV / BOD 22-01 Deadline Planner](https://kev-deadline-planner.vercel.app/): Paste CVEs or scanner output, match the bundled CISA KEV catalog snapshot locally, sort overdue and due-soon items, and export Markdown, CSV, or ICS planning files.
- [Project notes](https://kev-deadline-planner.vercel.app/about.html): Sources, BOD 22-01 due-date caveats, no-tracking boundaries, and catalog snapshot details.

## Data Snapshot

- CISA KEV catalog version: `2026.05.14`
- Released: `2026-05-14T17:31:13.2397Z`
- Entries: `1,591`
- Latest added item: `CVE-2026-20182` for Cisco Catalyst SD-WAN, due `2026-05-17`
- Source JSON feed: https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json

## Notes

- Runs entirely in the browser.
- No signup, cookies, analytics, beacons, uploads, browser storage, or external scripts.
- CVEs absent from the bundled CISA KEV snapshot are reported as not found; this is not a general CVE lookup service.
- Unofficial worksheet only; not CISA affiliation, legal advice, security advice, remediation advice, BOD 22-01 compliance advice, scanner output validation, exploit validation, or environment-specific risk analysis.
- Verify current CISA catalog entries, BOD 22-01 applicability, product applicability, asset exposure, and vendor remediation instructions before acting.