Vulnerabilities exploitable today
349,029in current view
Single score combining CVSS, KEV membership and EPSS. Every CVE with its own record — timeline from publication to active exploitation.
In KEV catalog1,644
New KEV · 24H0
Exploit Today ≥ 701,579
Distribution · last window
- Critical1,283
- High4,187
- Medium3,505
- Low268
Window
Severity
Flags
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2019-11510—100.0%
KEVR80Ivanti Pulse Connect Secure Arbitrary File Read Vulnerability—CVE-2022-44877—100.0%
KEV—80CWP Control Web Panel OS Command Injection Vulnerability—CVE-2021-1498—100.0%
KEV—80Cisco HyperFlex HX Data Platform Command Injection Vulnerability—CVE-2021-26086—100.0%
KEV—80Atlassian Jira Server and Data Center Path Traversal Vulnerability—CVE-2019-16920—100.0%
KEV—80D-Link Multiple Routers Command Injection Vulnerability—CVE-2023-1671—100.0%
KEV—80Sophos Web Appliance Command Injection Vulnerability—CVE-2023-44487—100.0%
KEV—80HTTP/2 Rapid Reset Attack Vulnerability—CVE-2021-40438—100.0%
KEV—80Apache HTTP Server-Side Request Forgery (SSRF)—CVE-2024-3400—100.0%
KEVR80Palo Alto Networks PAN-OS Command Injection Vulnerability—CVE-2012-1823—100.0%
KEV—80PHP-CGI Query String Parameter Vulnerability—CVE-2020-5902—100.0%
KEVR80F5 BIG-IP Traffic Management User Interface (TMUI) Remote Code Execution Vulnerability—CVE-2017-7921—100.0%
KEV—80Hikvision Multiple Products Improper Authentication Vulnerability—CVE-2019-0708—100.0%
KEVR80Microsoft Remote Desktop Services Remote Code Execution Vulnerability—CVE-2020-8515—100.0%
KEV—80Multiple DrayTek Vigor Routers Web Management Page Vulnerability—CVE-2018-11776—100.0%
KEV—80Apache Struts Remote Code Execution Vulnerability—CVE-2024-21893—100.0%
KEVR80Ivanti Connect Secure, Policy Secure, and Neurons Server-Side Request Forgery (SSRF) Vulnerability—CVE-2021-22005—100.0%
KEVR80VMware vCenter Server File Upload Vulnerability—CVE-2020-9054—100.0%
KEV—80Zyxel Multiple NAS Devices OS Command Injection Vulnerability—CVE-2024-7593—100.0%
KEV—80Ivanti Virtual Traffic Manager Authentication Bypass Vulnerability—CVE-2021-41773—100.0%
KEVR80Apache HTTP Server Path Traversal Vulnerability—CVE-2021-21985—100.0%
KEVR80VMware vCenter Server Improper Input Validation Vulnerability—CVE-2021-26084—100.0%
KEVR80Atlassian Confluence Server and Data Center Object-Graph Navigation Language (OGNL) Injection Vulnerability—CVE-2024-3273—100.0%
KEV—80D-Link Multiple NAS Devices Command Injection Vulnerability—CVE-2014-6271—100.0%
KEV—80GNU Bourne-Again Shell (Bash) Arbitrary Code Execution Vulnerability—CVE-2023-35078—100.0%
KEVR80Ivanti Endpoint Manager Mobile Authentication Bypass Vulnerability—CVE-2021-35464—100.0%
KEVR80ForgeRock Access Management (AM) Core Server Remote Code Execution Vulnerability—CVE-2018-7600—100.0%
KEVR80Drupal Core Remote Code Execution Vulnerability—CVE-2019-19781—100.0%
KEVR80Citrix ADC, Gateway, and SD-WAN WANOP Appliance Code Execution Vulnerability—CVE-2013-2251—100.0%
KEV—80Apache Struts Improper Input Validation Vulnerability—CVE-2020-14882—100.0%
KEV—80Oracle WebLogic Server Remote Code Execution Vulnerability—CVE-2024-34102—100.0%
KEV—80Adobe Commerce and Magento Open Source Improper Restriction of XML External Entity Reference (XXE) Vulnerability—CVE-2014-0160—100.0%
KEV—80OpenSSL Information Disclosure Vulnerability—CVE-2023-35082—100.0%
KEVR80Ivanti Endpoint Manager Mobile (EPMM) and MobileIron Core Authentication Bypass Vulnerability—CVE-2021-34473—100.0%
KEVR80Microsoft Exchange Server Remote Code Execution Vulnerability—CVE-2023-4966—100.0%
KEVR80Citrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability—CVE-2022-22954—100.0%
KEVR80VMware Workspace ONE Access and Identity Manager Server-Side Template Injection Vulnerability—CVE-2022-26134—100.0%
KEVR80Atlassian Confluence Server and Data Center Remote Code Execution Vulnerability—CVE-2023-32315—100.0%
KEV—80Ignite Realtime Openfire Path Traversal Vulnerability—CVE-2018-13379—100.0%
KEVR80Fortinet FortiOS SSL VPN Path Traversal Vulnerability—CVE-2023-29300—100.0%
KEVR80Adobe ColdFusion Deserialization of Untrusted Data Vulnerability—