Vulnerabilities exploitable today
349,216in current view
Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.
In KEV catalog1,644
New KEV · 24H0
Exploit Today ≥ 701,579
Distribution · last window
- Critical1,299
- High4,252
- Medium3,580
- Low277
Window
Severity
Flags
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2023-28204—96.2%
KEV—79Apple Multiple Products WebKit Out-of-Bounds Read Vulnerability—CVE-2019-9875—96.2%
KEV—79Sitecore CMS and Experience Platform (XP) Deserialization Vulnerability—CVE-2020-10181—96.2%
KEV—79Sumavision EMR Cross-Site Request Forgery (CSRF) Vulnerability—CVE-2021-22900—96.2%
KEV—79Ivanti Pulse Connect Secure Unrestricted File Upload Vulnerability—CVE-2022-22948—96.1%
KEV—79VMware vCenter Server Incorrect Default File Permissions Vulnerability —CVE-2014-2120—96.1%
KEV—79Cisco Adaptive Security Appliance (ASA) Cross-Site Scripting (XSS) Vulnerability—CVE-2016-0165—96.1%
KEV—79Microsoft Win32k Privilege Escalation Vulnerability—CVE-2017-12240—96.1%
KEV—79Cisco IOS and IOS XE Software DHCP Remote Code Execution Vulnerability—CVE-2024-12686—96.1%
KEV—79BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) OS Command Injection Vulnerability—CVE-2024-49039—96.1%
KEVR79Microsoft Windows Task Scheduler Privilege Escalation Vulnerability—CVE-2022-1364—96.1%
KEV—79Google Chromium V8 Type Confusion Vulnerability—CVE-2023-20867—96.0%
KEV—79VMware Tools Authentication Bypass Vulnerability—CVE-2021-30858—96.0%
KEV—79Apple iOS, iPadOS, macOS Use-After-Free Vulnerability—CVE-2024-38213—96.0%
KEV—79Microsoft Windows SmartScreen Security Feature Bypass Vulnerability—CVE-2021-27876—96.0%
KEVR79Veritas Backup Exec Agent File Access Vulnerability—CVE-2019-3010—96.0%
KEV—79Oracle Solaris Privilege Escalation Vulnerability—CVE-2025-29824—96.0%
KEVR79Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability—CVE-2015-4902—96.0%
KEV—79Oracle Java SE Integrity Check Vulnerability—CVE-2026-22769—95.9%
KEV—79Dell RecoverPoint for Virtual Machines (RP4VMs) Use of Hard-coded Credentials Vulnerability—CVE-2022-2586—95.8%
KEV—79Linux Kernel Use-After-Free Vulnerability—CVE-2022-23176—95.8%
KEV—79WatchGuard Firebox and XTM Privilege Escalation Vulnerability—CVE-2025-31201—95.8%
KEV—79Apple Multiple Products Arbitrary Read and Write Vulnerability—CVE-2026-34926—95.8%
KEV—79Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability—CVE-2022-22675—95.8%
KEV—79Apple macOS Out-of-Bounds Write Vulnerability—CVE-2024-21410—95.8%
KEV—79Microsoft Exchange Server Privilege Escalation Vulnerability—CVE-2022-38181—95.8%
KEV—79Arm Mali GPU Kernel Driver Use-After-Free Vulnerability—CVE-2022-20775—95.8%
KEV—79Cisco SD-WAN Path Traversal Vulnerability—CVE-2025-42999—95.8%
KEV—79SAP NetWeaver Deserialization Vulnerability—CVE-2022-41328—95.7%
KEV—79Fortinet FortiOS Path Traversal Vulnerability—CVE-2023-21715—95.7%
KEV—79Microsoft Office Publisher Security Feature Bypass Vulnerability—CVE-2023-32373—95.7%
KEV—79Apple Multiple Products WebKit Use-After-Free Vulnerability—CVE-2017-11292—95.7%
KEV—79Adobe Flash Player Type Confusion Vulnerability—CVE-2023-36424—95.7%
KEV—79Microsoft Windows Out-of-Bounds Read Vulnerability—CVE-2010-3904—95.7%
KEV—79Linux Kernel Improper Input Validation Vulnerability—CVE-2025-66376—95.7%
KEV—79Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting Vulnerability—CVE-2023-36033—95.7%
KEV—79Microsoft Windows Desktop Window Manager (DWM) Core Library Privilege Escalation Vulnerability—CVE-2021-28663—95.7%
KEV—79Arm Mali Graphics Processing Unit (GPU) Use-After-Free Vulnerability—CVE-2023-32046—95.6%
KEV—79Microsoft Windows MSHTML Platform Privilege Escalation Vulnerability—CVE-2020-3118—95.6%
KEV—79Cisco IOS XR Software Discovery Protocol Format String Vulnerability—CVE-2025-9377—95.6%
KEV—79TP-Link Archer C7(EU) and TL-WR841N/ND(MS) OS Command Injection Vulnerability—