Vulnerabilities exploitable today
349,216in current view
Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.
In KEV catalog1,644
New KEV · 24H0
Exploit Today ≥ 701,579
Distribution · last window
- Critical1,299
- High4,252
- Medium3,580
- Low277
Window
Severity
Flags
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2026-20262—93.9%
KEV—78Cisco Catalyst SD-WAN Manager Directory or Path Traversal Vulnerability—CVE-2020-0683—93.9%
KEV—78Microsoft Windows Installer Privilege Escalation Vulnerability—CVE-2004-0210—93.9%
KEV—78Microsoft Windows Privilege Escalation Vulnerability—CVE-2021-30952—93.9%
KEV—78Apple Multiple Products Integer Overflow or Wraparound Vulnerability—CVE-2024-57728—93.8%
KEVR78SimpleHelp Path Traversal Vulnerability—CVE-2019-0676—93.8%
KEV—78Microsoft Internet Explorer Information Disclosure Vulnerability—CVE-2021-34486—93.8%
KEV—78Microsoft Windows Event Tracing Privilege Escalation Vulnerability—CVE-2021-30554—93.7%
KEV—78Google Chromium WebGL Use-After-Free Vulnerability—CVE-2023-7024—93.7%
KEV—78Google Chromium WebRTC Heap Buffer Overflow Vulnerability—CVE-2018-0158—93.7%
KEV—78Cisco IOS and XE Software Internet Key Exchange Memory Leak Vulnerability—CVE-2022-24521—93.7%
KEVR78Microsoft Windows CLFS Driver Privilege Escalation Vulnerability—CVE-2020-3950—93.6%
KEV—78VMware Multiple Products Privilege Escalation Vulnerability—CVE-2018-0154—93.6%
KEV—78Cisco IOS Software Integrated Services Module for VPN Denial-of-Service Vulnerability—CVE-2017-6744—93.6%
KEV—78Cisco IOS Software SNMP Remote Code Execution Vulnerability—CVE-2017-12235—93.5%
KEV—78Cisco IOS Software for Cisco Industrial Ethernet Switches PROFINET Denial-of-Service Vulnerability—CVE-2017-12234—93.5%
KEV—78Cisco IOS Software Common Industrial Protocol Request Denial-of-Service Vulnerability—CVE-2017-12231—93.5%
KEV—78Cisco IOS Software Network Address Translation Denial-of-Service Vulnerability—CVE-2021-1871—93.5%
KEV—78Apple iOS, iPadOS, and macOS WebKit Remote Code Execution Vulnerability—CVE-2017-12233—93.5%
KEV—78Cisco IOS Software Common Industrial Protocol Request Denial-of-Service Vulnerability—CVE-2017-12237—93.5%
KEV—78Cisco IOS and IOS XE Software Internet Key Exchange Denial-of-Service Vulnerability—CVE-2026-34621—93.5%
KEV—78Adobe Acrobat and Reader Prototype Pollution Vulnerability—CVE-2021-1879—93.5%
KEV—78Apple iOS, iPadOS, and watchOS WebKit Cross-Site Scripting (XSS) Vulnerability—CVE-2019-0344—93.5%
KEV—78SAP Commerce Cloud Deserialization of Untrusted Data Vulnerability—CVE-2024-38080—93.5%
KEV—78Microsoft Windows Hyper-V Privilege Escalation Vulnerability—CVE-2023-26369—93.5%
KEV—78Adobe Acrobat and Reader Out-of-Bounds Write Vulnerability—CVE-2018-0159—93.4%
KEV—78Cisco IOS and XE Software Internet Key Exchange Version 1 Denial-of-Service Vulnerability—CVE-2026-20122—93.4%
KEV—78Cisco Catalyst SD-WAN Manager Incorrect Use of Privileged APIs Vulnerability—CVE-2022-27518—93.4%
KEV—78Citrix Application Delivery Controller (ADC) and Gateway Authentication Bypass Vulnerability—CVE-2008-3431—93.4%
KEV—78Oracle VirtualBox Insufficient Input Validation Vulnerability—CVE-2019-1064—93.3%
KEVR78Microsoft Windows AppX Deployment Service (AppXSVC) Privilege Escalation Vulnerability—CVE-2020-1040—93.3%
KEV—78Microsoft Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability—CVE-2026-33825—93.2%
KEVR78Microsoft Defender Insufficient Granularity of Access Control Vulnerability—CVE-2022-3723—93.2%
KEV—78Google Chromium V8 Type Confusion Vulnerability—CVE-2023-28434—93.2%
KEV—78MinIO Security Feature Bypass Vulnerability—CVE-2013-1675—93.2%
KEV—78Mozilla Firefox Information Disclosure Vulnerability—CVE-2012-0767—93.1%
KEV—78Adobe Flash Player Cross-Site Scripting (XSS) Vulnerability—CVE-2021-30713—93.1%
KEV—78Apple macOS Unspecified Vulnerability—CVE-2025-6554—93.1%
KEV—78Google Chromium V8 Type Confusion Vulnerability—CVE-2021-33739—93.0%
KEV—78Microsoft Desktop Window Manager (DWM) Core Library Privilege Escalation Vulnerability—CVE-2025-5419—93.0%
KEV—78Google Chromium V8 Out-of-Bounds Read and Write Vulnerability—