Vulnerabilities exploitable today
22in current view
Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.
In KEV catalog1,644
New KEV · 24H0
Exploit Today ≥ 701,579
Distribution · last window
- Critical1,283
- High4,187
- Medium3,505
- Low268
Window
Severity
Flags
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2026-468179.8 CRI60.3%
KEV—68Oracle E-Business Suite Improper Privilege Management Vulnerability17hCVE-2023-43467.5 HIG54.2%
KEV—66KNX Association KNX Protocol Connection Authorization Option 1 Overly Restrictive Account Lockout Mechanism Vulnerability17hCVE-2026-154107.2 HIG71.1%
KEV—71SonicWall SMA1000 Appliances Code Injection Vulnerability17hCVE-2026-1540910.0 CRI66.4%
KEV—70SonicWall SMA1000 Appliances Server-Side Request Forgery Vulnerability17hCVE-2026-561645.3 MED92.0%
KEV—78Microsoft SharePoint Server Missing Authentication for Critical Function Vulnerability2dCVE-2026-561557.8 HIG30.2%
KEV—59Microsoft Active Directory Federation Services Insufficient Granularity of Access Control Vulnerability 1dCVE-2008-41284.3 MED97.6%
KEV—79Cisco IOS Cross-Site Request Forgery Vulnerability3dCVE-2026-562919.8 CRI53.6%
KEV—66Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability6dCVE-2026-489399.8 CRI71.5%
KEV—71iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability6dCVE-2026-4828210.0 CRI97.9%
KEV—79Adobe ColdFusion Path Traversal Vulnerability8dCVE-2026-562909.8 CRI85.4%
KEV—76Joomlack Page Builder Improper Access Control Vulnerability8dCVE-2026-552558.4 HIG42.8%
KEV—63Langflow Authorization Bypass Through User-Controlled Key Vulnerability8dCVE-2026-489089.8 CRI72.6%
KEV—72JoomShaper SP Page Builder Unrestricted Upload of File with Dangerous Type Vulnerability8dCVE-2026-456598.8 HIG86.8%
KEV—76Microsoft SharePoint Server Deserialization of Untrusted Data Vulnerability14dCVE-2026-4855810.0 CRI63.5%
KEV—69SimpleHelp Authentication Bypass Vulnerability16dCVE-2026-125699.8 CRI66.0%
KEV—70PTC Windchill and FlexPLM Improper Input Validation Vulnerability16dCVE-2026-202308.6 HIG98.5%
KEV—80Cisco Unified Communications Manager Server-Side Request Forgery (SSRF) Vulnerability15dCVE-2026-34909—81.1%
KEV—74Ubiquiti UniFi OS Path Traversal Vulnerability—CVE-2026-34908—82.6%
KEV—75Ubiquiti UniFi OS Improper Access Control Vulnerability—CVE-2026-34910—99.5%
KEV—80Ubiquiti UniFi OS Improper Input Validation Vulnerability—CVE-2025-670389.8 CRI55.3%
KEV—67Lantronix EDS5000 Code Injection Vulnerability10dCVE-2026-20253—99.8%
KEV—80Splunk Enterprise Missing Authentication for Critical Function Vulnerability—