Total CVEs
2378
last 14 days
Avg Priority
26.2
of max 220
KEV
7
actively exploited
POC
137
public exploits
Unpatched
392
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
126
CVE-2026-41091
Improper link resolution before file access ('link following') in Microsoft Defender allows an autho
120
CVE-2026-48172
LiteSpeed User-End cPanel Plugin before 2.4.5 allows privilege escalation (possibly to root), as exp
117
CVE-2026-8398
A supply chain attack compromised the official installation packages of DAEMON Tools Lite (Windows v
116
CVE-2026-48027
Nx Console is the user interface for Nx & Lerna. On 19 May 2026, a malicious version of Nx Console,
108
CVE-2026-9082
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
92
CVE-2026-45498
Microsoft Defender Denial of Service Vulnerability
89
CVE-2026-34926
A directory traversal vulnerability in the Apex One (on-premise) server could allow a pre-authentica
Priority Distribution
| Priority | CVE |
|---|---|
| 43 |
CVE-2026-8958
Information disclosure, sandbox escape in the Security: Process Sandboxing compo
|
| 43 |
CVE-2026-8851
SOGo 5.12.7 contains a SQL injection vulnerability in the Access Control List ma
|
| 43 |
CVE-2026-45298
## Summary
In a default dozzle deploy (the documented quickstart, no `DOZZLE_AU
|
| 43 |
CVE-2026-9157
Improper input validation, Unrestricted upload of file with dangerous type vulne
|
| 43 |
CVE-2026-42089
### Impact
`yeoman-environment` versions `>= 2.9.0` and `< 6.0.1` install missi
|
| 43 |
CVE-2026-46491
## Summary
`simplesamlphp-module-casserver` builds file paths for the file-base
|
| 43 |
CVE-2026-44465
Zed is a code editor. Prior to 0.227.1, Zed IDE executes arbitrary commands when
|
| 43 |
CVE-2026-32997
A vulnerability allowing an authenticated user with the Backup Administrator rol
|
| 43 |
CVE-2026-9038
A stack-based buffer overflow vulnerability in the charging controller’s signal-
|
| 43 |
CVE-2026-44461
Zed is a code editor. Prior to 0.227.1, Zed builds SSH/WSL remote commands as a
|
| 43 |
CVE-2026-44463
Zed is a code editor. Prior to 0.229.0, Zed's terminal tool permission system ca
|
| 43 |
CVE-2026-9039
A configuration weakness in the device’s remote management service allows an aut
|
| 43 |
CVE-2026-47107
Windmill prior to 1.703.2 contains an incorrect default permissions vulnerabilit
|
| 43 |
CVE-2026-44466
Zed is a code editor. Prior to 0.229.0, Zed's terminal tool permission system ca
|
| 43 |
CVE-2026-8652
An OS Command Injection vulnerability exists in Aterm. If a malicious third pers
|
| 43 |
CVE-2026-3515
A vulnerability in the `GitHubRepository` block of the `prefect-github` integrat
|
| 43 |
CVE-2026-8632
A potential security vulnerability has been identified in the HP Linux Imaging a
|
| 43 |
CVE-2025-54517
Out of bounds write in AMD AMDGV_CMD_GET_DIAG_DATA ioctl handler could allow a l
|
| 43 |
CVE-2026-42730
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injecti
|
| 43 |
CVE-2026-9489
NitroSense 3.x before 3.01.3052 contains Local Privilege Escalation (LPE) vulner
|
| 43 |
CVE-2026-9789
A Local Privilege Escalation (LPE) vulnerability affects Acer NitroSense softwar
|
| 43 |
CVE-2026-28761
Cross-site request forgery vulnerability exists in Musetheque V4 Information Dis
|
| 43 |
CVE-2025-48519
An improper input validation vulnerability within the AMD Platform Management Fr
|
| 43 |
CVE-2025-52540
An improper input validation vulnerability within the AMD Platform Management Fr
|
| 43 |
CVE-2026-7373
Rapid7 Metasploit Pro is vulnerable to a local privilege escalation attack that
|
| 43 |
CVE-2026-44933
`PluginScript` attempts to `chroot` the plugin to the `repoManagerRoot`, this ro
|
| 43 |
CVE-2026-0432
Incorrect default permissions in the installation directory for the AMD chipset
|
| 42 |
CVE-2025-48977
Relative Path Traversal vulnerability in Apache Ignite REST API.
Authenticated
|
| 42 |
CVE-2026-49046
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injecti
|
| 42 |
CVE-2026-33590
Insecure default settings of Portainer CE grant regular (non-admin) users privil
|
| 42 |
CVE-2026-46717
## Summary
nezha's dashboard supports two user roles: `RoleAdmin` (Role==0) and
|
| 42 |
CVE-2026-48153
Budibase is an open-source low-code platform. Prior to 3.39.0, fetchToken in the
|
| 42 |
CVE-2026-46372
## Resolution
SillyTavern 1.18.0 added a generic server-side request filter (Pr
|
| 42 |
CVE-2026-46820
Vulnerability in the Oracle Financials Common Modules product of Oracle E-Busine
|
| 42 |
CVE-2026-8370
Execution with unnecessary privileges vulnerability in Broadcom Automic Automati
|
| 42 |
CVE-2026-5509
An authenticated command injection vulnerability exists in the Archer BE450 v1 a
|
| 42 |
CVE-2026-9144
Taiko AG1000-01A SMS Alert Gateway Rev 7.3 and Rev 8 contains a stored cross-sit
|
| 42 |
CVE-2025-29936
Improper input validation within the AMD Platform Management Framework (PMF) cou
|
| 42 |
CVE-2026-40851
A local attacker can perform a confusion attack on the cfgparser via a specially
|
| 42 |
CVE-2026-46508
Turborepo is a high-performance build system for JavaScript and TypeScript codeb
|
| 42 |
CVE-2026-45253
ptrace(PT_SC_REMOTE) failed to properly validate parameters for the syscall(2) a
|
| 42 |
CVE-2026-45038
Tabby (formerly Terminus) is a highly configurable terminal emulator. Prior to 1
|
| 42 |
CVE-2025-29935
An out of bounds write within the AMD Platform Management Framework (PMF) could
|
| 42 |
CVE-2026-25781
in OpenHarmony v6.0 and prior versions allow a local attacker cause DOS and it c
|
| 42 |
CVE-2026-41964
Permission control vulnerability in the web. Impact: Successful exploitation of
|
| 42 |
CVE-2026-49238
An issue was discovered in Canonical Multipass before version 1.16.3. The host-s
|
| 42 |
CVE-2026-2740
Zohocorp ManageEngine ADSelfService Plus version before 6525, DataSecurity Plus
|
| 42 |
CVE-2026-45108
Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune.
|
| 42 |
CVE-2026-7365
IBM Operations Analytics - Log Analysis and IBM SmartCloud Analytics - Log Anal
|
| 42 |
CVE-2026-5804
An improper authentication vulnerability was discovered in the Motorola Factory
|
| 42 |
CVE-2026-46345
**Relevant Products/Components:**
* `trestle/core/commands/author/jinja.py`
* `
|
| 42 |
CVE-2026-7766
Kenik Camera management Panel is vulnerable to Path Traversal vulnerability. An
|
| 42 |
CVE-2026-9136
A vulnerability was identified in the ShadowAttribute proposal creation workflow
|
| 42 |
CVE-2026-9133
Active debug code exists in the ARN resolver of amazon-mq rabbitmq-aws before ve
|
| 42 |
CVE-2025-0028
An unchecked return value within the AMD Platform Management Framework (PMF) co
|
| 42 |
CVE-2026-46367
phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in Ut
|
| 42 |
CVE-2026-46481
**This is not applicable if an application is configuring the Secrets Store to s
|
| 41 |
CVE-2026-8726
The extension fails to properly sanitize user input before using it in a databas
|
| 41 |
CVE-2026-34253
A buffer underflow vulnerability has been identified in the ogg123 utility from
|
| 41 |
CVE-2026-9284
The WooCommerce PayPal Payments plugin for WordPress is vulnerable to unauthoriz
|
| 41 |
CVE-2026-8469
Allocation of Resources Without Limits or Throttling vulnerability in phenixdigi
|
| 41 |
CVE-2026-47077
Allocation of Resources Without Limits or Throttling vulnerability in benoitc ha
|
| 41 |
CVE-2026-42735
Authentication Bypass Using an Alternate Path or Channel vulnerability in Iqonic
|
| 41 |
CVE-2026-24188
NVIDIA TensorRT contains a vulnerability where an attacker could cause an out-of
|
| 41 |
CVE-2026-8827
The AddressRepository::getSqlQuery() method constructs a database query without
|
| 41 |
CVE-2026-9057
A broken access control issue has been identified in the Talend Administration C
|
| 41 |
CVE-2026-48248
Open ISES Tickets before 3.44.2 disables TLS certificate verification in incs/lo
|
| 41 |
CVE-2026-44712
pam_usb provides hardware authentication for Linux using ordinary removable medi
|
| 41 |
CVE-2026-48249
Open ISES Tickets before 3.44.2 disables TLS certificate verification in rm/incs
|
| 41 |
CVE-2026-22810
### Summary
A path traversal vulnerability in the OneNote importer allows overwr
|
| 41 |
CVE-2026-46361
phpMyFAQ before 4.1.2 contains a stored cross-site scripting vulnerability in se
|
| 41 |
CVE-2026-46720
Net::Statsd::Tiny versions before 0.3.8 for Perl allowed metric injections.
The
|
| 41 |
CVE-2026-46728
Das U-Boot before 2026.04 allows FIT (Flat Image Tree) signature verification by
|
| 41 |
CVE-2026-42013
A flaw was found in gnutls. When validating certificates, an oversized Subject A
|
| 41 |
CVE-2026-4868
GitLab has remediated an issue in GitLab EE affecting all versions from 18.8 bef
|
| 41 |
CVE-2026-45302
## Summary
`parseFormData()` walks bracket and dot-notation FormData field name
|
| 41 |
CVE-2026-5260
A flaw was found in libgnutls. A remote attacker, by sending an extremely short
|
| 41 |
CVE-2026-45325
### Impact
Prototype pollution vulnerability in @tmlmobilidade/utils for setValu
|
| 41 |
CVE-2026-5817
The vllm-metal inference backend in Docker Model Runner on macOS unconditionally
|
| 41 |
CVE-2026-46510
## Summary
`form-data-objectizer` walks bracket-notation form keys (e.g. `name[
|
| 41 |
CVE-2026-48246
Open ISES Tickets before 3.44.2 disables TLS certificate verification in ajax/re
|
| 41 |
CVE-2026-45627
## Summary
The unauthenticated `GET /api/app-images/logo` endpoint reflects a u
|
| 41 |
CVE-2026-48247
Open ISES Tickets before 3.44.2 disables TLS certificate verification in incs/fu
|
| 41 |
CVE-2026-44358
Espressif Shared GitHub DangerJS is a reusable GitHub Action CI DangerJS workflo
|
| 41 |
CVE-2026-46415
### Impact
Caddy Defender used `r.RemoteAddr` when evaluating whether a request
|
| 41 |
CVE-2026-5843
The MLX inference backend in Docker Model Runner on macOS uses the MLX-LM librar
|
| 41 |
CVE-2026-45327
## Title
Missing authentication on WebRTC ingest endpoint allows unauthenticate
|
| 41 |
CVE-2026-24792
in OpenHarmony v6.0 and prior versions allow a remote attacker arbitrary code ex
|
| 41 |
CVE-2026-46727
An issue was discovered in Ruby 4 before 4.0.5. A race condition leading to a us
|
| 41 |
CVE-2026-8994
The Login with NEAR plugin for WordPress is vulnerable to Authentication Bypass
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 776d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2344d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2157d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1771d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2274d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 5021d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1242d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 1044d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3799d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 946d |