Vulnerabilidades explotables hoy
349,130en la vista actual
Score único combinando CVSS, membresía KEV y EPSS. Cada CVE con su ficha propia — timeline desde publicación hasta explotación activa.
En catálogo KEV1,644
Nuevos KEV · 24H0
Exploit Today ≥ 701,579
Distribución · última ventana
- Crítico1,293
- Alto4,219
- Medio3,544
- Bajo277
Ventana
Severidad
Filtros
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2019-15107—100.0%
KEVR80Webmin Command Injection Vulnerability—CVE-2019-3396—100.0%
KEVR80Atlassian Confluence Server and Data Center Server-Side Template Injection Vulnerability—CVE-2024-38475—100.0%
KEV—80Apache HTTP Server Improper Escaping of Output Vulnerability—CVE-2025-24813—100.0%
KEV—80Apache Tomcat Path Equivalence Vulnerability—CVE-2023-38035—100.0%
KEVR80Ivanti Sentry Authentication Bypass Vulnerability—CVE-2022-41040—100.0%
KEVR80Microsoft Exchange Server Server-Side Request Forgery Vulnerability—CVE-2021-38647—100.0%
KEVR80Microsoft Open Management Infrastructure (OMI) Remote Code Execution Vulnerability—CVE-2021-44515—100.0%
KEV—80Zoho Desktop Central Authentication Bypass Vulnerability—CVE-2023-21839—100.0%
KEV—80Oracle WebLogic Server Unspecified Vulnerability—CVE-2021-26085—100.0%
KEVR80Atlassian Confluence Server Pre-Authorization Arbitrary File Read Vulnerability—CVE-2023-46805—100.0%
KEVR80Ivanti Connect Secure and Policy Secure Authentication Bypass Vulnerability—CVE-2021-22204—100.0%
KEV—80ExifTool Remote Code Execution Vulnerability—CVE-2022-22963—100.0%
KEV—80VMware Tanzu Spring Cloud Function Remote Code Execution Vulnerability—CVE-2024-45519—100.0%
KEV—80Synacor Zimbra Collaboration Suite (ZCS) Command Execution Vulnerability—CVE-2024-29824—100.0%
KEV—80Ivanti Endpoint Manager (EPM) SQL Injection Vulnerability—CVE-2021-34527—100.0%
KEVR80Microsoft Windows Print Spooler Remote Code Execution Vulnerability—CVE-2021-37415—100.0%
KEV—80Zoho ManageEngine ServiceDesk Authentication Bypass Vulnerability—CVE-2016-10033—100.0%
KEV—80PHPMailer Command Injection Vulnerability—CVE-2024-24919—100.0%
KEVR80Check Point Quantum Security Gateways Information Disclosure Vulnerability—CVE-2019-9670—100.0%
KEV—80Synacor Zimbra Collaboration Suite (ZCS) Improper Restriction of XML External Entity Reference—CVE-2018-0296—100.0%
KEV—80Cisco Adaptive Security Appliance (ASA) Denial-of-Service Vulnerability—CVE-2025-49706—100.0%
KEVR80Microsoft SharePoint Improper Authentication Vulnerability—CVE-2021-20090—100.0%
KEV—80Arcadyan Buffalo Firmware Path Traversal Vulnerability—CVE-2017-0199—100.0%
KEVR80Microsoft Office and WordPad Remote Code Execution Vulnerability—CVE-2025-32432—100.0%
KEV—80Craft CMS Code Injection Vulnerability—CVE-2021-35394—100.0%
KEV—80Realtek Jungle SDK Remote Code Execution Vulnerability—CVE-2023-4863—100.0%
KEV—80Google Chromium WebP Heap-Based Buffer Overflow Vulnerability—CVE-2024-4879—100.0%
KEV—80ServiceNow Improper Input Validation Vulnerability—CVE-2024-36401—100.0%
KEV—80OSGeo GeoServer GeoTools Eval Injection Vulnerability—CVE-2023-22527—100.0%
KEVR80Atlassian Confluence Data Center and Server Template Injection Vulnerability—CVE-2025-49704—100.0%
KEVR80Microsoft SharePoint Code Injection Vulnerability—CVE-2022-46169—100.0%
KEV—80Cacti Command Injection Vulnerability—CVE-2021-31207—100.0%
KEVR80Microsoft Exchange Server Security Feature Bypass Vulnerability—CVE-2019-18935—100.0%
KEVR80Progress Telerik UI for ASP.NET AJAX Deserialization of Untrusted Data Vulnerability—CVE-2023-38205—100.0%
KEV—80Adobe ColdFusion Improper Access Control Vulnerability—CVE-2018-15961—100.0%
KEV—80Adobe ColdFusion Unrestricted File Upload Vulnerability—CVE-2014-8361—100.0%
KEV—80Realtek SDK Improper Input Validation Vulnerability—CVE-2024-38856—99.9%
KEV—80Apache OFBiz Incorrect Authorization Vulnerability—CVE-2026-24061—99.9%
KEV—80GNU InetUtils Argument Injection Vulnerability—CVE-2024-4885—99.9%
KEV—80Progress WhatsUp Gold Path Traversal Vulnerability—