Vulnerabilities exploitable today
349,195in current view
Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.
In KEV catalog1,644
New KEV · 24H0
Exploit Today ≥ 701,579
Distribution · last window
- Critical1,298
- High4,252
- Medium3,575
- Low277
Window
Severity
Flags
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2016-7193—99.0%
KEV—80Microsoft Office Memory Corruption Vulnerability—CVE-2017-0101—99.0%
KEVR80Microsoft Windows Transaction Manager Privilege Escalation Vulnerability—CVE-2020-26919—99.0%
KEV—80Netgear JGS516PE Devices Missing Function Level Access Control Vulnerability—CVE-2021-27104—98.9%
KEVR80Accellion FTA OS Command Injection Vulnerability—CVE-2019-5825—98.9%
KEV—80Google Chromium V8 Out-of-Bounds Write Vulnerability—CVE-2025-58034—98.9%
KEV—80Fortinet FortiWeb OS Command Injection Vulnerability—CVE-2019-11708—98.9%
KEV—80Mozilla Firefox and Thunderbird Sandbox Escape Vulnerability—CVE-2025-47813—98.9%
KEV—80Wing FTP Server Information Disclosure Vulnerability—CVE-2022-21882—98.9%
KEV—80Microsoft Win32k Privilege Escalation Vulnerability—CVE-2016-0984—98.9%
KEV—80Adobe Flash Player and AIR Use-After-Free Vulnerability—CVE-2015-1701—98.9%
KEVR80Microsoft Win32k Privilege Escalation Vulnerability—CVE-2021-252978.8 HIG98.9%
KEV—80Nagios XI OS Command Injection8dCVE-2018-0125—98.9%
KEV—80Cisco VPN Routers Remote Code Execution Vulnerability—CVE-2006-1547—98.9%
KEV—80Apache Struts 1 ActionForm Denial-of-Service Vulnerability—CVE-2025-2775—98.9%
KEV—80SysAid On-Prem Improper Restriction of XML External Entity Reference Vulnerability—CVE-2020-29557—98.9%
KEV—80D-Link DIR-825 R1 Devices Buffer Overflow Vulnerability—CVE-2024-38812—98.9%
KEV—80VMware vCenter Server Heap-Based Buffer Overflow Vulnerability—CVE-2015-1671—98.9%
KEV—80Microsoft Windows Remote Code Execution Vulnerability—CVE-2023-20118—98.9%
KEV—80Cisco Small Business RV Series Routers Command Injection Vulnerability—CVE-2021-22175—98.9%
KEV—80GitLab Server-Side Request Forgery (SSRF) Vulnerability—CVE-2019-0808—98.9%
KEV—80Microsoft Win32k Privilege Escalation Vulnerability—CVE-2023-45249—98.9%
KEV—80Acronis Cyber Infrastructure (ACI) Insecure Default Password Vulnerability—CVE-2014-0130—98.9%
KEV—80Ruby on Rails Directory Traversal Vulnerability—CVE-2019-1367—98.9%
KEVR80Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability—CVE-2020-1054—98.9%
KEV—80Microsoft Win32k Privilege Escalation Vulnerability—CVE-2015-1642—98.9%
KEV—80Microsoft Office Memory Corruption Vulnerability—CVE-2012-2539—98.9%
KEV—80Microsoft Word Remote Code Execution Vulnerability—CVE-2021-22941—98.9%
KEVR80Citrix ShareFile Improper Access Control Vulnerability—CVE-2022-21971—98.9%
KEV—80Microsoft Windows Runtime Remote Code Execution Vulnerability—CVE-2019-0541—98.9%
KEV—80Microsoft MSHTML Remote Code Execution Vulnerability—CVE-2020-25079—98.9%
KEV—80D-Link DCS-2530L and DCS-2670L Command Injection Vulnerability—CVE-2016-2388—98.8%
KEV—80SAP NetWeaver Information Disclosure Vulnerability—CVE-2024-21338—98.8%
KEVR80Microsoft Windows Kernel Exposed IOCTL with Insufficient Access Control Vulnerability—CVE-2023-32434—98.8%
KEV—80Apple Multiple Products Integer Overflow Vulnerability—CVE-2019-13272—98.8%
KEV—80Linux Kernel Improper Privilege Management Vulnerability—CVE-2021-20023—98.8%
KEVR80SonicWall Email Security Path Traversal Vulnerability—CVE-2024-43461—98.8%
KEV—80Microsoft Windows MSHTML Platform Spoofing Vulnerability—CVE-2021-28550—98.8%
KEV—80Adobe Acrobat and Reader Use-After-Free Vulnerability—CVE-2015-2502—98.8%
KEV—80Microsoft Internet Explorer Memory Corruption Vulnerability—CVE-2023-49897—98.8%
KEV—80FXC AE1021, AE1021PE OS Command Injection Vulnerability—