Vulnerabilities exploitable today
349,427in current view
Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.
In KEV catalog1,647
New KEV · 24H0
Exploit Today ≥ 701,582
Distribution · last window
- Critical1,327
- High4,319
- Medium3,685
- Low289
Window
Severity
Flags
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2023-21015—0.6%
——0——CVE-2025-26455—0.6%
——0——CVE-2023-21003—0.6%
——0——CVE-2023-21004—0.6%
——0——CVE-2023-21299—0.6%
——0——CVE-2023-21005—0.6%
——0——CVE-2022-20341—0.6%
——0——CVE-2023-20837—0.6%
——0——CVE-2018-9367—0.6%
——0——CVE-2024-27236—0.6%
——0——CVE-2024-9432—0.6%
——0——CVE-2022-20251—0.6%
——0——CVE-2025-48630—0.6%
——0——CVE-2022-20249—0.6%
——0——CVE-2023-21110—0.6%
——0——CVE-2025-20697—0.6%
——0——CVE-2023-21092—0.6%
——0——CVE-2026-25852—0.6%
——0——CVE-2023-21033—0.6%
——0——CVE-2025-14575—0.6%
——0——CVE-2022-20284—0.6%
——0——CVE-2018-9370—0.6%
——0——CVE-2026-43430—0.5%
——0——CVE-2018-9368—0.6%
——0——CVE-2024-20152—0.6%
——0——CVE-2024-32908—0.6%
——0——CVE-2024-32906—0.6%
——0——CVE-2026-31523—0.5%
——0——CVE-2022-20311—0.6%
——0——CVE-2022-20310—0.6%
——0——CVE-2026-533235.5 MED0.6%
——0In the Linux kernel, the following vulnerability has been resolved:
net: dsa: remove redundant netdev_lock_ops() from conduit ethtool ops
DSA replaces the conduit (master) device's ethtool_ops with its own
wrappers that aggregate stats from both the conduit and DSA switch
ports. Taking the lock again inside the DSA wrappers causes a deadlock.
Stumbled upon this when booting qemu with fbnic and CONFIG_NET_DSA_LOOP=y
(which looks like some kind of testing device that auto-populates the ports
of eth0). `ethtool -i` is enough to deadlock. This means we have basically zero
coverage for DSA stuff with real ops locked devs.
Remove the redundant netdev_lock_ops()/netdev_unlock_ops() calls from
the DSA conduit ethtool wrappers.11dCVE-2022-44419—0.6%
——0——CVE-2025-48590—0.6%
——0——CVE-2026-23400—0.6%
——0——CVE-2024-34733—0.6%
——0——CVE-2023-21292—0.6%
——0——CVE-2022-20344—0.6%
——0——CVE-2023-35657—0.6%
——0——CVE-2023-21128—0.6%
——0——CVE-2026-556555.0 MED0.6%
——0A flaw was found in OpenSSH. A local unprivileged attacker on a Linux client host can hijack client-side X11 forwarding connections. This is possible by pre-binding the preferred abstract X socket name when X11 forwarding is enabled and a local UNIX-domain X socket is used. A successful attack can compromise the confidentiality of forwarded X11 traffic, including sensitive window contents and input, and may allow some manipulation of the forwarded session.9d