Vulnerabilities exploitable today
349,130in current view
Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.
In KEV catalog1,644
New KEV · 24H0
Exploit Today ≥ 701,579
Distribution · last window
- Critical1,293
- High4,219
- Medium3,544
- Low277
Window
Severity
Flags
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2022-47966—100.0%
KEVR80Zoho ManageEngine Multiple Products Remote Code Execution Vulnerability—CVE-2025-59287—100.0%
KEV—80Microsoft Windows Server Update Service (WSUS) Deserialization of Untrusted Data Vulnerability—CVE-2014-7169—100.0%
KEV—80GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability—CVE-2020-0796—100.0%
KEVR80Microsoft SMBv3 Remote Code Execution Vulnerability—CVE-2022-1388—100.0%
KEVR80F5 BIG-IP Missing Authentication Vulnerability—CVE-2014-8361—100.0%
KEV—80Realtek SDK Improper Input Validation Vulnerability—CVE-2025-0282—100.0%
KEVR80Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability—CVE-2021-1497—100.0%
KEV—80Cisco HyperFlex HX Installer Virtual Machine Command Injection Vulnerability—CVE-2019-3396—100.0%
KEVR80Atlassian Confluence Server and Data Center Server-Side Template Injection Vulnerability—CVE-2021-34523—100.0%
KEVR80Microsoft Exchange Server Privilege Escalation Vulnerability—CVE-2022-41040—100.0%
KEVR80Microsoft Exchange Server Server-Side Request Forgery Vulnerability—CVE-2025-32432—100.0%
KEV—80Craft CMS Code Injection Vulnerability—CVE-2018-15961—100.0%
KEV—80Adobe ColdFusion Unrestricted File Upload Vulnerability—CVE-2022-35405—100.0%
KEV—80Zoho ManageEngine Multiple Products Remote Code Execution Vulnerability—CVE-2025-4427—100.0%
KEV—80Ivanti Endpoint Manager Mobile (EPMM) Authentication Bypass Vulnerability—CVE-2019-0604—100.0%
KEVR80Microsoft SharePoint Remote Code Execution Vulnerability—CVE-2017-1000353—100.0%
KEV—80Jenkins Remote Code Execution Vulnerability—CVE-2022-40684—100.0%
KEVR80Fortinet Multiple Products Authentication Bypass Vulnerability—CVE-2024-45519—100.0%
KEV—80Synacor Zimbra Collaboration Suite (ZCS) Command Execution Vulnerability—CVE-2021-36260—100.0%
KEV—80Hikvision Improper Input Validation—CVE-2021-35394—100.0%
KEV—80Realtek Jungle SDK Remote Code Execution Vulnerability—CVE-2024-38475—100.0%
KEV—80Apache HTTP Server Improper Escaping of Output Vulnerability—CVE-2021-44515—100.0%
KEV—80Zoho Desktop Central Authentication Bypass Vulnerability—CVE-2023-23752—100.0%
KEV—80Joomla! Improper Access Control Vulnerability—CVE-2024-4879—100.0%
KEV—80ServiceNow Improper Input Validation Vulnerability—CVE-2023-29298—100.0%
KEV—80Adobe ColdFusion Improper Access Control Vulnerability—CVE-2020-15505—100.0%
KEV—80Ivanti MobileIron Multiple Products Remote Code Execution Vulnerability—CVE-2022-30525—100.0%
KEV—80Zyxel Multiple Firewalls OS Command Injection Vulnerability—CVE-2023-22527—100.0%
KEVR80Atlassian Confluence Data Center and Server Template Injection Vulnerability—CVE-2024-45195—100.0%
KEV—80Apache OFBiz Forced Browsing Vulnerability—CVE-2020-0688—100.0%
KEVR80Microsoft Exchange Server Validation Key Remote Code Execution Vulnerability—CVE-2020-10189—100.0%
KEV—80Zoho ManageEngine Desktop Central File Upload Vulnerability—CVE-2021-22986—100.0%
KEVR80F5 BIG-IP and BIG-IQ Centralized Management iControl REST Remote Code Execution Vulnerability—CVE-2021-22204—100.0%
KEV—80ExifTool Remote Code Execution Vulnerability—CVE-2019-2725—100.0%
KEVR80Oracle WebLogic Server, Injection—CVE-2024-24919—100.0%
KEVR80Check Point Quantum Security Gateways Information Disclosure Vulnerability—CVE-2025-31161—100.0%
KEVR80CrushFTP Authentication Bypass Vulnerability—CVE-2022-22965—99.9%
KEV—80Spring Framework JDK 9+ Remote Code Execution Vulnerability—CVE-2020-7247—99.9%
KEV—80OpenSMTPD Remote Code Execution Vulnerability—CVE-2024-38856—99.9%
KEV—80Apache OFBiz Incorrect Authorization Vulnerability—