Vulnerabilities exploitable today
349,304in current view
Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.
In KEV catalog1,647
New KEV · 24H0
Exploit Today ≥ 701,582
Distribution · last window
- Critical1,310
- High4,271
- Medium3,627
- Low280
Window
Severity
Flags
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2021-36742—71.1%
KEV—71Trend Micro Multiple Products Improper Input Validation Vulnerability—CVE-2024-23225—71.0%
KEV—71Apple Multiple Products Memory Corruption Vulnerability—CVE-2025-312778.8 HIG71.0%
KEV—71Apple Multiple Products Buffer Overflow Vulnerability3dCVE-2024-39891—71.0%
KEV—71Twilio Authy Information Disclosure Vulnerability—CVE-2026-586449.8 CRI70.7%
KEV—71Microsoft SharePoint Deserialization of Untrusted Data Vulnerability15hCVE-2026-8398—70.6%
KEV—71Daemon Tools Lite Embedded Malicious Code Vulnerability—CVE-2023-20963—70.3%
KEV—71Android Framework Privilege Escalation Vulnerability—CVE-2025-21043—70.1%
KEV—71Samsung Mobile Devices Out-of-Bounds Write Vulnerability—CVE-2023-26083—70.0%
KEV—71Arm Mali GPU Kernel Driver Information Disclosure Vulnerability—CVE-2019-1214—69.8%
KEV—71Microsoft Windows Privilege Common Log File System (CLFS) Escalation Vulnerability—CVE-2024-23296—69.7%
KEV—71Apple Multiple Products Memory Corruption Vulnerability—CVE-2023-41974—69.6%
KEV—71Apple iOS and iPadOS Use-After-Free Vulnerability—CVE-2024-8068—69.4%
KEV—71Citrix Session Recording Improper Privilege Management Vulnerability—CVE-2025-21335—68.7%
KEV—71Microsoft Windows Hyper-V NT Kernel Integration VSP Use-After-Free Vulnerability—CVE-2023-4211—68.6%
KEV—71Arm Mali GPU Kernel Driver Use-After-Free Vulnerability—CVE-2025-38352—68.2%
KEV—70Linux Kernel Time-of-Check Time-of-Use (TOCTOU) Race Condition Vulnerability—CVE-2024-49035—68.1%
KEV—70Microsoft Partner Center Improper Access Control Vulnerability—CVE-2024-53150—67.8%
KEV—70Linux Kernel Out-of-Bounds Read Vulnerability—CVE-2026-20700—67.6%
KEV—70Apple Multiple Buffer Overflow Vulnerability—CVE-2020-0069—67.2%
KEV—70Mediatek Multiple Chipsets Insufficient Input Validation Vulnerability—CVE-2025-24983—67.2%
KEV—70Microsoft Windows Win32k Use-After-Free Vulnerability—CVE-2025-32701—67.0%
KEV—70Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability—CVE-2025-15556—66.5%
KEV—70Notepad++ Download of Code Without Integrity Check Vulnerability—CVE-2026-1540910.0 CRI66.5%
KEV—70SonicWall SMA1000 Appliances Server-Side Request Forgery Vulnerability2dCVE-2026-54420—66.3%
KEV—70LiteSpeed cPanel Plugin UNIX Symbolic Link (Symlink) Following Vulnerability—CVE-2026-125699.8 CRI66.0%
KEV—70PTC Windchill and FlexPLM Improper Input Validation Vulnerability17dCVE-2022-22706—65.4%
KEV—70Arm Mali GPU Kernel Driver Unspecified Vulnerability—CVE-2025-35939—64.0%
KEV—69Craft CMS External Control of Assumed-Immutable Web Parameter Vulnerability—CVE-2026-4855810.0 CRI63.6%
KEV—69SimpleHelp Authentication Bypass Vulnerability17dCVE-2021-1905—63.3%
KEV—69Qualcomm Multiple Chipsets Use-After-Free Vulnerability—CVE-2023-41990—63.1%
KEV—69Apple Multiple Products Code Execution Vulnerability—CVE-2022-42827—62.9%
KEV—69Apple iOS and iPadOS Out-of-Bounds Write Vulnerability—CVE-2022-22674—62.8%
KEV—69Apple macOS Out-of-Bounds Read Vulnerability—CVE-2021-25369—62.6%
KEV—69Samsung Mobile Devices Improper Access Control Vulnerability—CVE-2025-59374—62.1%
KEV—69ASUS Live Update Embedded Malicious Code Vulnerability—CVE-2023-36851—61.7%
KEV—69Juniper Junos OS SRX Series Missing Authentication for Critical Function Vulnerability—CVE-2026-21385—61.0%
KEV—68Qualcomm Multiple Chipsets Memory Corruption Vulnerability—CVE-2021-1048—60.4%
KEV—68Android Kernel Use-After-Free Vulnerability—CVE-2026-468179.8 CRI60.3%
KEV—68Oracle E-Business Suite Improper Privilege Management Vulnerability2dCVE-2021-23874—59.7%
KEV—68McAfee Total Protection (MTP) Improper Privilege Management Vulnerability—