Vulnerabilities exploitable today
349,304in current view
Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.
In KEV catalog1,647
New KEV · 24H0
Exploit Today ≥ 701,582
Distribution · last window
- Critical1,310
- High4,271
- Medium3,627
- Low280
Window
Severity
Flags
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2020-3569—87.1%
KEV—76Cisco IOS XR Software DVMRP Memory Exhaustion Vulnerability—CVE-2022-32894—87.0%
KEV—76Apple iOS and macOS Out-of-Bounds Write Vulnerability—CVE-2020-0041—86.9%
KEV—76Android Kernel Out-of-Bounds Write Vulnerability—CVE-2021-36955—86.8%
KEVR76Microsoft Windows Common Log File System (CLFS) Driver Privilege Escalation Vulnerability—CVE-2026-456598.8 HIG86.8%
KEV—76Microsoft SharePoint Server Deserialization of Untrusted Data Vulnerability15dCVE-2022-48503—86.8%
KEV—76Apple Multiple Products Unspecified Vulnerability—CVE-2020-9934—86.7%
KEV—76Apple iOS, iPadOS, and macOS Input Validation Vulnerability—CVE-2023-6548—86.7%
KEV—76Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability—CVE-2021-27059—86.6%
KEV—76Microsoft Office Remote Code Execution Vulnerability—CVE-2023-41061—86.5%
KEV—76Apple iOS, iPadOS, and watchOS Wallet Code Execution Vulnerability—CVE-2011-4723—86.4%
KEV—76D-Link DIR-300 Router Cleartext Storage of a Password Vulnerability—CVE-2017-0001—86.3%
KEV—76Microsoft Graphics Device Interface (GDI) Privilege Escalation Vulnerability—CVE-2025-66644—86.3%
KEV—76Array Networks ArrayOS AG OS Command Injection Vulnerability—CVE-2021-27562—86.2%
KEV—76Arm Trusted Firmware Out-of-Bounds Write Vulnerability—CVE-2025-42599—86.2%
KEV—76Qualitia Active! Mail Stack-Based Buffer Overflow Vulnerability—CVE-2025-8876—86.2%
KEV—76N-able N-Central Command Injection Vulnerability—CVE-2025-244728.1 HIG86.2%
KEVR76Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability9dCVE-2021-43226—86.2%
KEV—76Microsoft Windows Privilege Escalation Vulnerability—CVE-2022-40139—86.1%
KEV—76Trend Micro Apex One and Apex One as a Service Improper Validation Vulnerability—CVE-2023-36584—86.1%
KEV—76Microsoft Windows Mark of the Web (MOTW) Security Feature Bypass Vulnerability—CVE-2021-30666—86.0%
KEV—76Apple iOS WebKit Buffer Overflow Vulnerability—CVE-2018-8589—86.0%
KEV—76Microsoft Win32k Privilege Escalation Vulnerability—CVE-2024-11667—85.9%
KEVR76Zyxel Multiple Firewalls Path Traversal Vulnerability—CVE-2021-29256—85.9%
KEV—76Arm Mali GPU Kernel Driver Use-After-Free Vulnerability—CVE-2022-41125—85.9%
KEV—76Microsoft Windows CNG Key Isolation Service Privilege Escalation Vulnerability—CVE-2024-32896—85.9%
KEV—76Android Pixel Privilege Escalation Vulnerability—CVE-2020-6819—85.7%
KEV—76Mozilla Firefox And Thunderbird Use-After-Free Vulnerability—CVE-2021-31199—85.6%
KEV—76Microsoft Enhanced Cryptographic Provider Privilege Escalation Vulnerability—CVE-2022-21919—85.6%
KEV—76Microsoft Windows User Profile Service Privilege Escalation Vulnerability—CVE-2018-4344—85.6%
KEV—76Apple Multiple Products Memory Corruption Vulnerability—CVE-2021-30983—85.5%
KEV—76Apple iOS and iPadOS Buffer Overflow Vulnerability—CVE-2020-0638—85.5%
KEVR76Microsoft Update Notification Manager Privilege Escalation Vulnerability—CVE-2023-41992—85.5%
KEV—76Apple Multiple Products Kernel Privilege Escalation Vulnerability—CVE-2026-562909.8 CRI85.4%
KEV—76Joomlack Page Builder Improper Access Control Vulnerability9dCVE-2021-25337—85.0%
KEV—76Samsung Mobile Devices Improper Access Control Vulnerability—CVE-2020-16013—85.0%
KEV—76Google Chromium V8 Incorrect Implementation Vulnerabililty—CVE-2025-48384—84.7%
KEV—75Git Link Following Vulnerability—CVE-2020-16017—84.5%
KEV—75Google Chrome Use-After-Free Vulnerability—CVE-2022-42948—84.3%
KEV—75Fortra Cobalt Strike User Interface Remote Code Execution Vulnerability—CVE-2024-36971—84.3%
KEV—75Android Kernel Remote Code Execution Vulnerability—