Vulnerabilities exploitable today
349,195in current view
Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.
In KEV catalog1,644
New KEV · 24H0
Exploit Today ≥ 701,579
Distribution · last window
- Critical1,298
- High4,252
- Medium3,575
- Low277
Window
Severity
Flags
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2022-21445—99.1%
KEV—80Oracle ADF Faces Deserialization of Untrusted Data Vulnerability—CVE-2010-2572—99.1%
KEV—80Microsoft PowerPoint Buffer Overflow Vulnerability—CVE-2016-0151—99.1%
KEVR80Microsoft Windows CSRSS Security Feature Bypass Vulnerability—CVE-2010-1428—99.1%
KEVR80Red Hat JBoss Information Disclosure Vulnerability—CVE-2018-4939—99.1%
KEV—80Adobe ColdFusion Deserialization of Untrusted Data Vulnerability—CVE-2009-0563—99.1%
KEV—80Microsoft Office Buffer Overflow Vulnerability—CVE-2025-11953—99.1%
KEV—80React Native Community CLI OS Command Injection Vulnerability—CVE-2018-8373—99.1%
KEV—80Microsoft Scripting Engine Memory Corruption Vulnerability—CVE-2021-22991—99.1%
KEV—80F5 BIG-IP Traffic Management Microkernel Buffer Overflow—CVE-2015-7755—99.1%
KEV—80Juniper ScreenOS Improper Authentication Vulnerability—CVE-2024-8956—99.1%
KEV—80PTZOptics PT30X-SDI/NDI Cameras Authentication Bypass Vulnerability—CVE-2024-54085—99.1%
KEV—80AMI MegaRAC SPx Authentication Bypass by Spoofing Vulnerability—CVE-2020-4428—99.1%
KEV—80IBM Data Risk Manager Remote Code Execution Vulnerability—CVE-2023-21529—99.1%
KEVR80Microsoft Exchange Server Deserialization of Untrusted Data Vulnerability—CVE-2019-5786—99.1%
KEV—80Google Chrome Blink Use-After-Free Vulnerability—CVE-2024-43468—99.1%
KEV—80Microsoft Configuration Manager SQL Injection Vulnerability—CVE-2018-7445—99.1%
KEV—80MikroTik RouterOS Stack-Based Buffer Overflow Vulnerability—CVE-2017-0059—99.1%
KEV—80Microsoft Internet Explorer Information Disclosure Vulnerability—CVE-2024-23113—99.1%
KEV—80Fortinet Multiple Products Format String Vulnerability—CVE-2023-21608—99.1%
KEV—80Adobe Acrobat and Reader Use-After-Free Vulnerability—CVE-2023-37580—99.0%
KEV—80Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability—CVE-2026-33634—99.0%
KEV—80Aquasecurity Trivy Embedded Malicious Code Vulnerability—CVE-2016-20017—99.0%
KEV—80D-Link DSL-2750B Devices Command Injection Vulnerability—CVE-2017-11774—99.0%
KEV—80Microsoft Office Outlook Security Feature Bypass Vulnerability—CVE-2018-6065—99.0%
KEV—80Google Chromium V8 Integer Overflow Vulnerability—CVE-2021-21551—99.0%
KEV—80Dell dbutil Driver Insufficient Access Control Vulnerability—CVE-2025-2746—99.0%
KEV—80Kentico Xperience CMS Authentication Bypass Using an Alternate Path or Channel Vulnerability—CVE-2025-31125—99.0%
KEV—80Vite Vitejs Improper Access Control Vulnerability—CVE-2021-33742—99.0%
KEV—80Microsoft Windows MSHTML Platform Remote Code Execution Vulnerability—CVE-2023-43770—99.0%
KEV—80Roundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability—CVE-2016-7262—99.0%
KEV—80Microsoft Office Security Feature Bypass Vulnerability—CVE-2009-0557—99.0%
KEV—80Microsoft Office Object Record Corruption Vulnerability—CVE-2025-24054—99.0%
KEV—80Microsoft Windows NTLM Hash Disclosure Spoofing Vulnerability—CVE-2020-8655—99.0%
KEV—80EyesOfNetwork Improper Privilege Management Vulnerability—CVE-2013-7331—99.0%
KEV—80Microsoft Internet Explorer Information Disclosure Vulnerability—CVE-2023-6549—99.0%
KEV—80Citrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability—CVE-2026-20127—99.0%
KEV—80Cisco Catalyst SD-WAN Controller and Manager Authentication Bypass Vulnerability—CVE-2017-0101—99.0%
KEVR80Microsoft Windows Transaction Manager Privilege Escalation Vulnerability—CVE-2016-7193—99.0%
KEV—80Microsoft Office Memory Corruption Vulnerability—CVE-2022-29499—99.0%
KEVR80Mitel MiVoice Connect Data Validation Vulnerability—