PULSE
LIVE16signals / 24h
FEED
ransomqilin reclama a Powder River Heating & Air Conditioning · US · Consumer Servicesransomqilin reclama a Droguería Martorani · AR · Consumer Servicesransomthegentlemen reclama a Military Sealift Command · US · Transportation/Logisticsransomthegentlemen reclama a Advantage Home Health Care · US · Healthcareransomthegentlemen reclama a Sunway Scientific · TW · Manufacturingransomqilin reclama a Cafar · AR · Agriculture and Food Productionransominterlock reclama a Centre for Newcomers · CA · Public Sectorransominterlock reclama a Paragon Store Fixtures · US · Manufacturingransomakira reclama a Westcoast Communication Services · Telecommunicationransomakira reclama a Nesco Bus Maintenance · Transportation/Logisticsransomm3rx reclama a suppcentersa.com · ZA · Business Servicesransomm3rx reclama a arambol.co.uk · GB · Not Foundransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomqilin reclama a Powder River Heating & Air Conditioning · US · Consumer Servicesransomqilin reclama a Droguería Martorani · AR · Consumer Servicesransomthegentlemen reclama a Military Sealift Command · US · Transportation/Logisticsransomthegentlemen reclama a Advantage Home Health Care · US · Healthcareransomthegentlemen reclama a Sunway Scientific · TW · Manufacturingransomqilin reclama a Cafar · AR · Agriculture and Food Productionransominterlock reclama a Centre for Newcomers · CA · Public Sectorransominterlock reclama a Paragon Store Fixtures · US · Manufacturingransomakira reclama a Westcoast Communication Services · Telecommunicationransomakira reclama a Nesco Bus Maintenance · Transportation/Logisticsransomm3rx reclama a suppcentersa.com · ZA · Business Servicesransomm3rx reclama a arambol.co.uk · GB · Not Foundransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Found
CVE Watch349,427 in full archive

Vulnerabilities exploitable today

349,427in current view

Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.

In KEV catalog1,647
New KEV · 24H0
Exploit Today ≥ 701,582

Distribution · last window

  • Critical
    1,327
  • High
    4,319
  • Medium
    3,685
  • Low
    289
Filters

Window

Severity

Flags

Vulnerabilities347,121–347,160 · 349,427
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2023-21015
0.6%
0
CVE-2025-26455
0.6%
0
CVE-2023-21003
0.6%
0
CVE-2023-21004
0.6%
0
CVE-2023-21299
0.6%
0
CVE-2023-21005
0.6%
0
CVE-2022-20341
0.6%
0
CVE-2023-20837
0.6%
0
CVE-2018-9367
0.6%
0
CVE-2024-27236
0.6%
0
CVE-2024-9432
0.6%
0
CVE-2022-20251
0.6%
0
CVE-2025-48630
0.6%
0
CVE-2022-20249
0.6%
0
CVE-2023-21110
0.6%
0
CVE-2025-20697
0.6%
0
CVE-2023-21092
0.6%
0
CVE-2026-25852
0.6%
0
CVE-2023-21033
0.6%
0
CVE-2025-14575
0.6%
0
CVE-2022-20284
0.6%
0
CVE-2018-9370
0.6%
0
CVE-2026-43430
0.5%
0
CVE-2018-9368
0.6%
0
CVE-2024-20152
0.6%
0
CVE-2024-32908
0.6%
0
CVE-2024-32906
0.6%
0
CVE-2026-31523
0.5%
0
CVE-2022-20311
0.6%
0
CVE-2022-20310
0.6%
0
CVE-2026-533235.5 MED
0.6%
0In the Linux kernel, the following vulnerability has been resolved: net: dsa: remove redundant netdev_lock_ops() from conduit ethtool ops DSA replaces the conduit (master) device's ethtool_ops with its own wrappers that aggregate stats from both the conduit and DSA switch ports. Taking the lock again inside the DSA wrappers causes a deadlock. Stumbled upon this when booting qemu with fbnic and CONFIG_NET_DSA_LOOP=y (which looks like some kind of testing device that auto-populates the ports of eth0). `ethtool -i` is enough to deadlock. This means we have basically zero coverage for DSA stuff with real ops locked devs. Remove the redundant netdev_lock_ops()/netdev_unlock_ops() calls from the DSA conduit ethtool wrappers.11d
CVE-2022-44419
0.6%
0
CVE-2025-48590
0.6%
0
CVE-2026-23400
0.6%
0
CVE-2024-34733
0.6%
0
CVE-2023-21292
0.6%
0
CVE-2022-20344
0.6%
0
CVE-2023-35657
0.6%
0
CVE-2023-21128
0.6%
0
CVE-2026-556555.0 MED
0.6%
0A flaw was found in OpenSSH. A local unprivileged attacker on a Linux client host can hijack client-side X11 forwarding connections. This is possible by pre-binding the preferred abstract X socket name when X11 forwarding is enabled and a local UNIX-domain X socket is used. A successful attack can compromise the confidentiality of forwarded X11 traffic, including sensitive window contents and input, and may allow some manipulation of the forwarded session.9d