Vulnerabilities exploitable today
4,276in current view
Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.
In KEV catalog1,644
New KEV · 24H0
Exploit Today ≥ 701,579
Distribution · last window
- Critical1,299
- High4,252
- Medium3,580
- Low277
Window
Severity
Flags
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2015-4133—99.1%
——30——CVE-2022-41076—99.1%
——30——CVE-2017-8835—99.1%
——30——CVE-2017-7546—99.1%
——30——CVE-2018-15153—99.1%
——30——CVE-2019-5786—99.1%
KEV—80Google Chrome Blink Use-After-Free Vulnerability—CVE-2005-1825—99.1%
——30——CVE-2020-3251—99.1%
——30——CVE-2007-3632—99.1%
——30——CVE-2006-5780—99.1%
——30——CVE-2012-4711—99.1%
——30——CVE-2012-1449—99.1%
——30——CVE-2012-1455—99.1%
——30——CVE-2018-0986—99.1%
——30——CVE-2023-21608—99.1%
KEV—80Adobe Acrobat and Reader Use-After-Free Vulnerability—CVE-2024-1883—99.1%
——30——CVE-2026-429458.1 HIG99.1%
——30NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_module module. This vulnerability exists when the rewrite directive is followed by a rewrite, if, or set directive and an unnamed Perl-Compatible Regular Expression (PCRE) capture (for example, $1, $2) with a replacement string that includes a question mark (?). An unauthenticated attacker along with conditions beyond its control can exploit this vulnerability by sending crafted HTTP requests. This may cause a heap buffer overflow in the NGINX worker process leading to a restart. Additionally, attackers can execute code on systems with Address Space Layout Randomization (ASLR) disabled or when the attacker can bypass ASLR. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.2dCVE-2021-30181—99.1%
——30——CVE-2024-54085—99.1%
KEV—80AMI MegaRAC SPx Authentication Bypass by Spoofing Vulnerability—CVE-2002-0148—99.1%
——30——CVE-2014-2206—99.1%
——30——CVE-2018-16836—99.1%
——30——CVE-2023-44442—99.1%
——30——CVE-2015-7755—99.1%
KEV—80Juniper ScreenOS Improper Authentication Vulnerability—CVE-2022-25772—99.1%
——30——CVE-2006-1189—99.1%
——30——CVE-2014-2364—99.1%
——30——CVE-2005-2087—99.1%
——30——CVE-2021-27084—99.1%
——30——CVE-2017-1000119—99.1%
——30——CVE-2024-50599—99.1%
——30——CVE-2010-1807—99.1%
——30——CVE-2019-1252—99.1%
——30——CVE-2008-5457—99.1%
——30——CVE-2006-1190—99.1%
——30——CVE-2011-2595—99.1%
——30——CVE-2008-0065—99.1%
——30——CVE-2021-27670—99.1%
——30——CVE-2010-0239—99.1%
——30——CVE-2007-1675—99.1%
——30——