Vulnerabilities exploitable today
349,195in current view
Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.
In KEV catalog1,644
New KEV · 24H0
Exploit Today ≥ 701,579
Distribution · last window
- Critical1,298
- High4,252
- Medium3,575
- Low277
Window
Severity
Flags
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2020-28949—99.7%
KEV—80PEAR Archive_Tar Deserialization of Untrusted Data Vulnerability—CVE-2017-0213—99.7%
KEVR80Microsoft Windows Privilege Escalation Vulnerability—CVE-2022-24990—99.7%
KEVR80TerraMaster OS Remote Command Execution Vulnerability—CVE-2023-27992—99.7%
KEV—80Zyxel Multiple NAS Devices Command Injection Vulnerability—CVE-2024-58136—99.7%
KEV—80Yiiframework Yii Improper Protection of Alternate Path Vulnerability—CVE-2019-9874—99.7%
KEV—80Sitecore CMS and Experience Platform (XP) Deserialization Vulnerability—CVE-2023-36847—99.7%
KEV—80Juniper Junos OS EX Series Missing Authentication for Critical Function Vulnerability—CVE-2015-3035—99.7%
KEV—80TP-Link Multiple Archer Devices Directory Traversal Vulnerability—CVE-2009-3953—99.7%
KEV—80Adobe Acrobat and Reader Universal 3D Remote Code Execution Vulnerability—CVE-2010-2883—99.6%
KEV—80Adobe Acrobat and Reader Stack-Based Buffer Overflow Vulnerability—CVE-2025-14847—99.6%
KEV—80MongoDB and MongoDB Server Improper Handling of Length Parameter Inconsistency Vulnerability—CVE-2020-3992—99.6%
KEVR80VMware ESXi OpenSLP Use-After-Free Vulnerability—CVE-2010-1297—99.6%
KEV—80Adobe Flash Player Memory Corruption Vulnerability—CVE-2015-1187—99.6%
KEV—80D-Link and TRENDnet Multiple Devices Remote Code Execution Vulnerability—CVE-2010-0806—99.6%
KEV—80Microsoft Internet Explorer Use-After-Free Vulnerability—CVE-2023-41266—99.6%
KEVR80Qlik Sense Path Traversal Vulnerability—CVE-2021-27561—99.6%
KEV—80Yealink Device Management Server-Side Request Forgery (SSRF) Vulnerability—CVE-2010-3765—99.6%
KEV—80Mozilla Multiple Products Remote Code Execution Vulnerability—CVE-2019-7194—99.6%
KEVR80QNAP Photo Station Path Traversal Vulnerability—CVE-2024-0769—99.6%
KEV—80 D-Link DIR-859 Router Path Traversal Vulnerability—CVE-2010-1871—99.6%
KEV—80Red Hat Linux JBoss Seam 2 Remote Code Execution Vulnerability—CVE-2016-7200—99.6%
KEV—80Microsoft Edge Memory Corruption Vulnerability—CVE-2022-26923—99.6%
KEV—80Microsoft Active Directory Domain Services Privilege Escalation Vulnerability—CVE-2018-6789—99.6%
KEVR80Exim Buffer Overflow Vulnerability—CVE-2023-43208—99.6%
KEVR80NextGen Healthcare Mirth Connect Deserialization of Untrusted Data Vulnerability—CVE-2024-43451—99.6%
KEV—80Microsoft Windows NTLMv2 Hash Disclosure Spoofing Vulnerability—CVE-2013-0074—99.6%
KEVR80Microsoft Silverlight Double Dereference Vulnerability—CVE-2017-0262—99.6%
KEV—80Microsoft Office Remote Code Execution Vulnerability—CVE-2009-4324—99.6%
KEV—80Adobe Acrobat and Reader Use-After-Free Vulnerability—CVE-2019-9621—99.6%
KEV—80Synacor Zimbra Collaboration Suite (ZCS) Server-Side Request Forgery (SSRF) Vulnerability—CVE-2014-4114—99.6%
KEV—80Microsoft Windows Object Linking & Embedding (OLE) Remote Code Execution Vulnerability—CVE-2025-8088—99.6%
KEV—80RARLAB WinRAR Path Traversal Vulnerability—CVE-2018-15982—99.6%
KEVR80Adobe Flash Player Use-After-Free Vulnerability—CVE-2021-31955—99.6%
KEV—80Microsoft Windows Kernel Information Disclosure Vulnerability—CVE-2013-1331—99.6%
KEV—80Microsoft Office Buffer Overflow Vulnerability—CVE-2017-11826—99.6%
KEV—80Microsoft Office Remote Code Execution Vulnerability—CVE-2023-4911—99.6%
KEV—80GNU C Library Buffer Overflow Vulnerability—CVE-2016-7255—99.6%
KEV—80Microsoft Win32k Privilege Escalation Vulnerability—CVE-2026-1281—99.6%
KEV—80Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability—CVE-2024-8957—99.6%
KEV—80PTZOptics PT30X-SDI/NDI Cameras OS Command Injection Vulnerability—