Vulnerabilities exploitable today
349,130in current view
Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.
In KEV catalog1,644
New KEV · 24H0
Exploit Today ≥ 701,579
Distribution · last window
- Critical1,293
- High4,219
- Medium3,544
- Low277
Window
Severity
Flags
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2023-20273—99.8%
KEV—80Cisco IOS XE Web UI Command Injection Vulnerability—CVE-2017-8464—99.8%
KEV—80Microsoft Windows Shell (.lnk) Remote Code Execution Vulnerability—CVE-2020-29583—99.8%
KEV—80Zyxel Multiple Products Use of Hard-Coded Credentials Vulnerability—CVE-2021-43798—99.8%
KEV—80Grafana Path Traversal Vulnerability—CVE-2017-0146—99.8%
KEVR80Microsoft Windows SMB Remote Code Execution Vulnerability—CVE-2018-14839—99.8%
KEV—80LG N1A1 NAS Remote Command Execution Vulnerability—CVE-2018-4878—99.8%
KEVR80Adobe Flash Player Use-After-Free Vulnerability—CVE-2024-13161—99.8%
KEV—80Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability—CVE-2020-8193—99.8%
KEV—80Citrix ADC, Gateway, and SD-WAN WANOP Appliance Authorization Bypass Vulnerability—CVE-2022-0847—99.8%
KEV—80Linux Kernel Privilege Escalation Vulnerability—CVE-2025-26399—99.8%
KEV—80SolarWinds Web Help Desk Deserialization of Untrusted Data Vulnerability—CVE-2010-0188—99.8%
KEVR80Adobe Reader and Acrobat Arbitrary Code Execution Vulnerability—CVE-2026-1731—99.8%
KEVR80BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) OS Command Injection Vulnerability—CVE-2020-17463—99.8%
KEV—80Fuel CMS SQL Injection Vulnerability—CVE-2026-20253—99.8%
KEV—80Splunk Enterprise Missing Authentication for Critical Function Vulnerability—CVE-2023-36025—99.8%
KEV—80Microsoft Windows SmartScreen Security Feature Bypass Vulnerability—CVE-2019-7195—99.8%
KEVR80QNAP Photo Station Path Traversal Vulnerability—CVE-2025-5086—99.8%
KEV—80Dassault Systèmes DELMIA Apriso Deserialization of Untrusted Data Vulnerability—CVE-2014-3120—99.8%
KEV—80Elasticsearch Remote Code Execution Vulnerability—CVE-2017-5521—99.8%
KEV—80NETGEAR Multiple Devices Exposure of Sensitive Information Vulnerability—CVE-2025-61757—99.8%
KEV—80Oracle Fusion Middleware Missing Authentication for Critical Function Vulnerability—CVE-2010-3333—99.8%
KEV—80Microsoft Office Stack-based Buffer Overflow Vulnerability—CVE-2017-0145—99.8%
KEVR80Microsoft SMBv1 Remote Code Execution Vulnerability—CVE-2025-64446—99.8%
KEV—80Fortinet FortiWeb Path Traversal Vulnerability—CVE-2024-13160—99.8%
KEV—80Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability—CVE-2026-20182—99.8%
KEV—80Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability—CVE-2022-37042—99.8%
KEVR80Synacor Zimbra Collaboration Suite (ZCS) Authentication Bypass Vulnerability—CVE-2021-26858—99.8%
KEVR80Microsoft Exchange Server Remote Code Execution Vulnerability—CVE-2019-7192—99.8%
KEVR80QNAP Photo Station Improper Access Control Vulnerability—CVE-2009-3960—99.8%
KEVR80Adobe BlazeDS Information Disclosure Vulnerability—CVE-2025-37164—99.8%
KEV—80Hewlett Packard Enterprise (HPE) OneView Code Injection Vulnerability—CVE-2012-0151—99.8%
KEV—80Microsoft Windows Authenticode Signature Verification Remote Code Execution Vulnerability—CVE-2020-0601—99.8%
KEV—80Microsoft Windows CryptoAPI Spoofing Vulnerability—CVE-2013-0431—99.8%
KEVR80Oracle JRE Sandbox Bypass Vulnerability—CVE-2019-17621—99.8%
KEV—80D-Link DIR-859 Router Command Execution Vulnerability—CVE-2021-21311—99.8%
KEV—80Adminer Server-Side Request Forgery Vulnerability—CVE-2026-0257—99.7%
KEV—80Palo Alto Networks PAN-OS Authentication Bypass Vulnerability—CVE-2021-21973—99.7%
KEV—80VMware vCenter Server and Cloud Foundation Server Side Request Forgery (SSRF) Vulnerability—CVE-2022-27593—99.7%
KEVR80QNAP Photo Station Externally Controlled Reference Vulnerability—CVE-2020-0674—99.7%
KEV—80Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability—