Vulnerabilities exploitable today
349,130in current view
Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.
In KEV catalog1,644
New KEV · 24H0
Exploit Today ≥ 701,579
Distribution · last window
- Critical1,293
- High4,219
- Medium3,544
- Low277
Window
Severity
Flags
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2023-38831—99.9%
KEVR80RARLAB WinRAR Code Execution Vulnerability—CVE-2021-41277—99.9%
KEV—80Metabase GeoJSON API Local File Inclusion Vulnerability—CVE-2026-33017—99.9%
KEV—80Langflow Code Injection Vulnerability—CVE-2020-14864—99.9%
KEV—80Oracle Business Intelligence Enterprise Edition Path Transversal—CVE-2024-50623—99.9%
KEVR80Cleo Multiple Products Unrestricted File Upload Vulnerability—CVE-2025-0108—99.9%
KEV—80Palo Alto Networks PAN-OS Authentication Bypass Vulnerability—CVE-2020-2555—99.9%
KEV—80Oracle Multiple Products Remote Code Execution Vulnerability—CVE-2013-0422—99.9%
KEVR80Oracle JRE Remote Code Execution Vulnerability—CVE-2024-41713—99.9%
KEVR80Mitel MiCollab Path Traversal Vulnerability—CVE-2023-27524—99.9%
KEV—80Apache Superset Insecure Default Initialization of Resource Vulnerability—CVE-2023-20887—99.9%
KEV—80Vmware Aria Operations for Networks Command Injection Vulnerability—CVE-2020-6207—99.9%
KEV—80SAP Solution Manager Missing Authentication for Critical Function Vulnerability—CVE-2021-22054—99.9%
KEV—80Omnissa Workspace ONE Server-Side Request Forgery—CVE-2022-29303—99.9%
KEV—80SolarView Compact Command Injection Vulnerability—CVE-2008-2992—99.9%
KEVR80Adobe Reader and Acrobat Input Validation Vulnerability—CVE-2024-3272—99.9%
KEV—80D-Link Multiple NAS Devices Use of Hard-Coded Credentials Vulnerability—CVE-2021-36380—99.9%
KEV—80Sunhillo SureLine OS Command Injection Vulnerablity—CVE-2025-68613—99.9%
KEV—80n8n Improper Control of Dynamically-Managed Code Resources Vulnerability—CVE-2020-11738—99.9%
KEV—80WordPress Snap Creek Duplicator Plugin File Download Vulnerability—CVE-2019-1652—99.9%
KEV—80Cisco Small Business Routers Improper Input Validation Vulnerability—CVE-2019-20085—99.9%
KEV—80TVT NVMS-1000 Directory Traversal Vulnerability—CVE-2024-57727—99.9%
KEVR80SimpleHelp Path Traversal Vulnerability—CVE-2023-25717—99.9%
KEV—80Multiple Ruckus Wireless Products CSRF and RCE Vulnerability—CVE-2018-0798—99.9%
KEV—80Microsoft Office Memory Corruption Vulnerability—CVE-2023-46747—99.9%
KEVR80F5 BIG-IP Configuration Utility Authentication Bypass Vulnerability—CVE-2020-11651—99.9%
KEV—80SaltStack Salt Authentication Bypass Vulnerability—CVE-2018-14847—99.9%
KEV—80MikroTik Router OS Directory Traversal Vulnerability—CVE-2024-51378—99.9%
KEVR80CyberPanel Incorrect Default Permissions Vulnerability—CVE-2026-39987—99.9%
KEV—80Marimo Remote Code Execution Vulnerability—CVE-2022-36537—99.9%
KEVR80ZK Framework AuUploader Unspecified Vulnerability—CVE-2017-8291—99.9%
KEV—80Artifex Ghostscript Type Confusion Vulnerability—CVE-2026-341978.8 HIG99.9%
KEV—80Apache ActiveMQ Improper Input Validation Vulnerability2dCVE-2021-40444—99.9%
KEVR80Microsoft MSHTML Remote Code Execution Vulnerability—CVE-2026-23760—99.9%
KEVR80SmarterTools SmarterMail Authentication Bypass Using an Alternate Path or Channel Vulnerability—CVE-2022-24112—99.9%
KEV—80Apache APISIX Authentication Bypass Vulnerability—CVE-2025-54236—99.9%
KEV—80Adobe Commerce and Magento Improper Input Validation Vulnerability—CVE-2021-4034—99.9%
KEV—80Red Hat Polkit Out-of-Bounds Read and Write Vulnerability—CVE-2018-6530—99.9%
KEVR80D-Link Multiple Routers OS Command Injection Vulnerability—CVE-2018-1273—99.9%
KEVR80VMware Tanzu Spring Data Commons Property Binder Vulnerability—CVE-2022-23131—99.9%
KEV—80Zabbix Frontend Authentication Bypass Vulnerability—