Vulnerabilities exploitable today
349,429in current view
Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.
In KEV catalog1,647
New KEV · 24H0
Exploit Today ≥ 701,582
Distribution · last window
- Critical1,327
- High4,319
- Medium3,691
- Low289
Window
Severity
Flags
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2026-47336—0.7%
——0——CVE-2021-0872—0.7%
——0——CVE-2021-0873—0.7%
——0——CVE-2022-22263—0.7%
——0——CVE-2022-20329—0.7%
——0——CVE-2023-21160—0.7%
——0——CVE-2022-32635—0.7%
——0——CVE-2025-13665—0.7%
——0——CVE-2025-22830—0.7%
——0——CVE-2025-22422—0.7%
——0——CVE-2023-20848—0.7%
——0——CVE-2024-49720—0.7%
——0——CVE-2021-25481—0.7%
——0——CVE-2025-11791—0.7%
——0——CVE-2025-58287—0.7%
——0——CVE-2026-0075—0.7%
——0——CVE-2021-0882—0.7%
——0——CVE-2022-38681—0.7%
——0——CVE-2021-0883—0.7%
——0——CVE-2021-0879—0.7%
——0——CVE-2026-21016—0.7%
——0——CVE-2021-0878—0.7%
——0——CVE-2021-0881—0.7%
——0——CVE-2022-20261—0.7%
——0——CVE-2021-0880—0.7%
——0——CVE-2026-415152.5 LOW0.7%
——0OP-TEE is a Trusted Execution Environment (TEE) designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.9.0 and prior to version 4.11.0, the RSA-OAEP decryption implementation in the NXP CAAM crypto driver uses non-constant-time `memcmp()` for label hash verification and has multiple distinguishable error paths. This creates a Manger-style padding oracle that allows an attacker to recover RSA-OAEP plaintext with approximately 1000-2000 adaptive chosen ciphertext queries. Version 4.11.0 contains a patch. As a workaround, disable the NXP CAAM RSA driver with `CFG_CRYPTO_DRV_RSA=n`.11dCVE-2021-0874—0.7%
——0——CVE-2026-210365.5 MED0.7%
——0Improper authorization in Samsung Internet prior to version 30.0.0.39 allows local attackers to access sensitive information.18dCVE-2025-7007—0.7%
——0——CVE-2025-32331—0.7%
——0——CVE-2026-409527.8 HIG0.7%
——0CVE-2026-40952 is a privilege misconfiguration
in the Secure Access installer for the Windows client and server prior to
version 14.55. Attackers with local access to the client or server can use it
to elevate privileges to Administrator when Secure Access is installed in a
non-default location.2dCVE-2025-48566—0.7%
——0——CVE-2026-11229—0.7%
——0——CVE-2023-20679—0.7%
——0——CVE-2023-20681—0.7%
——0——CVE-2022-20394—0.7%
——0——CVE-2026-21025—0.7%
——0——CVE-2023-20647—0.7%
——0——CVE-2026-21033—0.7%
——0——CVE-2023-20665—0.7%
——0——