Vulnerabilities exploitable today
4,276in current view
Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.
In KEV catalog1,644
New KEV · 24H0
Exploit Today ≥ 701,579
Distribution · last window
- Critical1,298
- High4,252
- Medium3,575
- Low277
Window
Severity
Flags
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2012-0151—99.8%
KEV—80Microsoft Windows Authenticode Signature Verification Remote Code Execution Vulnerability—CVE-2021-23758—99.8%
——30——CVE-2017-8759—99.8%
KEV—80Microsoft .NET Framework Remote Code Execution Vulnerability—CVE-2011-1653—99.8%
——30——CVE-2021-21300—99.8%
——30——CVE-2021-45456—99.8%
——30——CVE-2022-30216—99.8%
——30——CVE-2014-3120—99.8%
KEV—80Elasticsearch Remote Code Execution Vulnerability—CVE-2023-46731—99.8%
——30——CVE-2024-13161—99.8%
KEV—80Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability—CVE-2004-1520—99.8%
——30——CVE-2026-35616—99.8%
KEV—80Fortinet FortiClient EMS Improper Access Control Vulnerability—CVE-2021-35590—99.8%
——30——CVE-2026-20182—99.8%
KEV—80Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability—CVE-2021-40323—99.8%
——30——CVE-2021-21699—99.8%
——30——CVE-2021-31643—99.8%
——30——CVE-2020-8193—99.8%
KEV—80Citrix ADC, Gateway, and SD-WAN WANOP Appliance Authorization Bypass Vulnerability—CVE-2012-1454—99.8%
——30——CVE-2020-3243—99.8%
——30——CVE-2018-1000115—99.8%
——30——CVE-2024-2961—99.8%
——30——CVE-2025-26399—99.8%
KEV—80SolarWinds Web Help Desk Deserialization of Untrusted Data Vulnerability—CVE-2025-61757—99.8%
KEV—80Oracle Fusion Middleware Missing Authentication for Critical Function Vulnerability—CVE-2024-21683—99.8%
——30——CVE-2022-37042—99.8%
KEVR80Synacor Zimbra Collaboration Suite (ZCS) Authentication Bypass Vulnerability—CVE-2010-0188—99.8%
KEVR80Adobe Reader and Acrobat Arbitrary Code Execution Vulnerability—CVE-2024-25600—99.8%
——30——CVE-2023-21547—99.8%
——30——CVE-2019-7192—99.8%
KEVR80QNAP Photo Station Improper Access Control Vulnerability—CVE-2023-36025—99.8%
KEV—80Microsoft Windows SmartScreen Security Feature Bypass Vulnerability—CVE-2026-20253—99.8%
KEV—80Splunk Enterprise Missing Authentication for Critical Function Vulnerability—CVE-2021-24145—99.8%
——30——CVE-2021-20837—99.8%
——30——CVE-2026-1731—99.8%
KEVR80BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) OS Command Injection Vulnerability—CVE-2020-5398—99.8%
——30——CVE-2022-0540—99.7%
——30——CVE-2017-12611—99.7%
——30——CVE-2014-1776—99.7%
KEV—80Microsoft Internet Explorer Memory Corruption Vulnerability—CVE-2021-21973—99.7%
KEV—80VMware vCenter Server and Cloud Foundation Server Side Request Forgery (SSRF) Vulnerability—