Vulnerabilities exploitable today
4,276in current view
Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.
In KEV catalog1,644
New KEV · 24H0
Exploit Today ≥ 701,579
Distribution · last window
- Critical1,293
- High4,219
- Medium3,544
- Low277
Window
Severity
Flags
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2022-39986—99.9%
——30——CVE-2013-2465—99.9%
KEVR80Oracle Java SE Unspecified Vulnerability—CVE-2012-3152—99.9%
KEV—80Oracle Fusion Middleware Unspecified Vulnerability—CVE-2015-0204—99.9%
——30——CVE-2018-15473—99.9%
——30——CVE-2003-0352—99.9%
——30——CVE-2024-29059—99.9%
KEV—80Microsoft .NET Framework Information Disclosure Vulnerability—CVE-2019-11539—99.9%
KEVR80Ivanti Pulse Connect Secure and Policy Secure Command Injection Vulnerability—CVE-2022-27925—99.9%
KEVR80Synacor Zimbra Collaboration Suite (ZCS) Arbitrary File Upload Vulnerability—CVE-2013-0333—99.9%
——30——CVE-2019-5736—99.9%
——30——CVE-2019-17558—99.9%
KEV—80Apache Solr VelocityResponseWriter Plug-In Remote Code Execution Vulnerability—CVE-2024-8963—99.9%
KEV—80Ivanti Cloud Services Appliance (CSA) Path Traversal Vulnerability—CVE-2024-50603—99.9%
KEV—80Aviatrix Controllers OS Command Injection Vulnerability—CVE-2012-4681—99.9%
KEVR80Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability—CVE-2024-50623—99.9%
KEVR80Cleo Multiple Products Unrestricted File Upload Vulnerability—CVE-2016-3088—99.9%
KEV—80Apache ActiveMQ Improper Input Validation Vulnerability—CVE-2024-20767—99.9%
KEV—80Adobe ColdFusion Improper Access Control Vulnerability—CVE-2019-5418—99.9%
KEV—80Rails Ruby on Rails Path Traversal Vulnerability—CVE-2008-2992—99.9%
KEVR80Adobe Reader and Acrobat Input Validation Vulnerability—CVE-2018-1000861—99.9%
KEV—80Jenkins Stapler Web Framework Deserialization of Untrusted Data Vulnerability—CVE-2018-12998—99.9%
——30——CVE-2018-12613—99.9%
——30——CVE-2024-9463—99.9%
KEV—80Palo Alto Networks Expedition OS Command Injection Vulnerability—CVE-2019-1003000—99.9%
——30——CVE-2025-0108—99.9%
KEV—80Palo Alto Networks PAN-OS Authentication Bypass Vulnerability—CVE-2023-29084—99.9%
——30——CVE-2018-11409—99.9%
——30——CVE-2022-21587—99.9%
KEVR80Oracle E-Business Suite Unspecified Vulnerability—CVE-2017-15944—99.9%
KEV—80Palo Alto Networks PAN-OS Remote Code Execution Vulnerability—CVE-2016-1555—99.9%
KEV—80NETGEAR Multiple WAP Devices Command Injection Vulnerability—CVE-2020-35847—99.9%
——30——CVE-2012-1457—99.9%
——30——CVE-2015-8562—99.9%
——30——CVE-2023-20887—99.9%
KEV—80Vmware Aria Operations for Networks Command Injection Vulnerability—CVE-2020-6207—99.9%
KEV—80SAP Solution Manager Missing Authentication for Critical Function Vulnerability—CVE-2024-555919.8 CRI99.9%
KEVR80Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability8dCVE-2022-22947—99.9%
KEV—80VMware Spring Cloud Gateway Code Injection Vulnerability—CVE-2020-15920—99.9%
——30——CVE-2012-3153—99.9%
——30——