Total CVEs
5744
last 30 days
Avg Priority
34.1
of max 220
KEV
6
actively exploited
POC
796
public exploits
Unpatched
1581
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
124
CVE-2026-35616
A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an
119
CVE-2026-5281
Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had co
117
CVE-2026-33634
Trivy is a security scanner. On March 19, 2026, a threat actor used compromised credentials to publi
117
CVE-2026-33017
## Summary
The `POST /api/v1/build_public_tmp/{flow_id}/flow` endpoint allows building public flows
117
CVE-2026-3055
Insufficient input validation in NetScaler ADC and NetScaler Gateway when configured as a SAML IDP l
109
CVE-2026-3502
TrueConf Client downloads application update code and applies it without performing verification. An
Priority Distribution
| Priority | CVE |
|---|---|
| 34 |
CVE-2025-15584
Netskope was notified about a potential gap in its Endpoint DLP Module for Netsk
|
| 34 |
CVE-2026-31850
Nexxt Solutions Nebula 300+ firmware through version 12.01.01.37 stores sensitiv
|
| 34 |
CVE-2026-33990
## Summary
Docker Model Runner contains an SSRF vulnerability in its OCI registr
|
| 34 |
CVE-2026-33572
OpenClaw before 2026.2.17 creates session transcript JSONL files with overly bro
|
| 34 |
CVE-2026-33997
## Summary
A security vulnerability has been detected that allows [plugins](htt
|
| 34 |
CVE-2026-4482
The installer certificate files in the …/bootstrap/common/ssl folder do not seem
|
| 34 |
CVE-2026-30603
An issue in the firmware update mechanism of Qianniao QN-L23PA0904 v20250721.164
|
| 34 |
CVE-2025-33215
NVIDIA SNAP-4 Container contains a vulnerability in the VIRTIO-BLK component whe
|
| 34 |
CVE-2025-33216
NVIDIA SNAP-4 Container contains a vulnerability in the configuration interface
|
| 34 |
CVE-2026-35577
Apollo MCP Server is a Model Context Protocol server that exposes GraphQL operat
|
| 34 |
CVE-2026-34864
Boundary-unlimited vulnerability in the application read module.
Impact: Success
|
| 34 |
CVE-2026-30817
An external configuration control vulnerability in the OpenVPN module of TP-Link
|
| 34 |
CVE-2026-30816
An external control of configuration vulnerability in the OpenVPN module of TP-L
|
| 34 |
CVE-2026-33776
A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS an
|
| 34 |
CVE-2026-33787
An Improper Check for Unusual or Exceptional Conditions vulnerability in the cha
|
| 34 |
CVE-2026-33786
An Improper Check for Unusual or Exceptional Conditions vulnerability in the cha
|
| 34 |
CVE-2026-40191
ClearanceKit intercepts file-system access events on macOS and enforces per-proc
|
| 34 |
CVE-2026-39961
Aiven Operator allows you to provision and manage Aiven Services from your Kuber
|
| 34 |
CVE-2026-33623
### Summary
PinchTab `v0.8.4` contains a Windows-only command injection issue in
|
| 34 |
CVE-2026-33549
SPIP 4.4.10 through 4.4.12 before 4.4.13 allows unintended privilege assignment
|
| 34 |
CVE-2025-64340
Server names containing shell metacharacters (e.g., `&`) can cause command injec
|
| 34 |
CVE-2026-32948
### Summary
On Windows, sbt uses `Process("cmd", "/c", ...)` to run VCS commands
|
| 34 |
CVE-2026-32496
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') v
|
| 34 |
CVE-2026-29608
OpenClaw 2026.3.1 contains an approval integrity vulnerability in system.run nod
|
| 34 |
CVE-2026-28728
Local privilege escalation due to DLL hijacking vulnerability. The following pro
|
| 34 |
CVE-2026-27774
Local privilege escalation due to DLL hijacking vulnerability. The following pro
|
| 34 |
CVE-2026-2809
Netskope was notified about a potential gap in its Endpoint DLP Module for Netsk
|
| 34 |
CVE-2026-34871
An issue was discovered in Mbed TLS before 3.6.6 and 4.x before 4.1.0 and TF-PSA
|
| 34 |
CVE-2025-14917
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphe
|
| 34 |
CVE-2026-33271
Local privilege escalation due to insecure folder permissions. The following pro
|
| 34 |
CVE-2026-5165
A flaw was found in virtio-win, specifically within the VirtIO Block (BLK) devic
|
| 34 |
CVE-2026-5164
A flaw was found in virtio-win. The `RhelDoUnMap()` function does not properly v
|
| 34 |
CVE-2026-40224
In systemd 259 before 260, there is local privilege escalation in systemd-machin
|
| 34 |
CVE-2026-25206
Out-of-bounds read vulnerability in Samsung Open Source Escargot allows Resource
|
| 34 |
CVE-2026-4878
A flaw was found in libcap. A local unprivileged user can exploit a Time-of-chec
|
| 34 |
CVE-2026-32901
OpenClaw before 2026.3.2 contains a semantic drift vulnerability in node system.
|
| 34 |
CVE-2026-34863
Out-of-bounds write vulnerability in the file system.
Impact: Successful exploit
|
| 34 |
CVE-2026-39389
CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, mo
|
| 33 |
CVE-2026-2462
Mattermost versions 11.3.x <= 11.3.0, 11.2.x <= 11.2.2, 10.11.x <= 10.11.10 fail
|
| 33 |
CVE-2026-34515
AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python.
|
| 33 |
CVE-2026-32003
OpenClaw versions prior to 2026.2.22 contain an environment variable injection v
|
| 33 |
CVE-2026-34388
Fleet is open source device management software. Prior to 4.81.0, a denial-of-se
|
| 33 |
CVE-2026-34516
AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python.
|
| 33 |
CVE-2026-32694
In Juju from version 3.0.0 through 3.6.18, when a secret owner grants permission
|
| 33 |
CVE-2026-33182
### Impact
Users providing user generated input into the `resolveEndpoint` metho
|
| 33 |
CVE-2026-34391
Fleet is open source device management software. Prior to 4.81.1, a vulnerabilit
|
| 33 |
CVE-2026-35479
InvenTree is an Open Source Inventory Management System. Prior to 1.2.7 and 1.3.
|
| 33 |
CVE-2026-27102
Dell PowerScale OneFS, versions 9.5.0.0 through 9.10.1.6 and versions 9.11.0.0 t
|
| 33 |
CVE-2026-4837
An eval() injection vulnerability in the Rapid7 Insight Agent beaconing logic fo
|
| 33 |
CVE-2026-35197
dye is a portable and respectful color library for shell scripts. Prior to 1.1.1
|
| 33 |
CVE-2026-33334
Vikunja is an open-source self-hosted task management platform. Starting in vers
|
| 33 |
CVE-2026-2421
The ilGhera Carta Docente for WooCommerce plugin for WordPress is vulnerable to
|
| 33 |
CVE-2026-33336
Vikunja is an open-source self-hosted task management platform. Starting in vers
|
| 33 |
CVE-2026-3689
OpenClaw Canvas Path Traversal Information Disclosure Vulnerability. This vulner
|
| 33 |
CVE-2026-34401
XML Notepad is a Windows program that provides a simple intuitive User Interface
|
| 33 |
CVE-2026-4426
A flaw was found in libarchive. An Undefined Behavior vulnerability exists in th
|
| 33 |
CVE-2026-2436
A flaw was found in libsoup's SoupServer. A remote attacker could exploit a use-
|
| 33 |
CVE-2026-26120
Server-side request forgery (ssrf) in Microsoft Bing allows an unauthorized atta
|
| 33 |
CVE-2026-22316
A remote attacker with user privileges for the webUI can use the setting of the
|
| 33 |
CVE-2026-0966
The API function `ssh_get_hexa()` is vulnerable, when 0-lenght
input is provided
|
| 33 |
CVE-2026-3309
The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User
|
| 33 |
CVE-2026-20096
A vulnerability in the web-based management interface of Cisco IMC could allow a
|
| 33 |
CVE-2026-20095
A vulnerability in the web-based management interface of Cisco IMC could allow a
|
| 33 |
CVE-2026-26136
Improper neutralization of special elements used in a command ('command injectio
|
| 33 |
CVE-2026-25928
OpenEMR is a free and open source electronic health records and medical practice
|
| 33 |
CVE-2026-2265
An unauthenticated remote code execution (RCE) vulnerability exists in applicati
|
| 33 |
CVE-2026-20431
In Modem, there is a possible system crash due to a logic error. This could lead
|
| 33 |
CVE-2026-29057
## Summary
When Next.js rewrites proxy traffic to an external backend, a crafted
|
| 33 |
CVE-2026-33056
tar-rs is a tar archive reading/writing library for Rust. In versions 0.4.44 and
|
| 33 |
CVE-2026-20097
A vulnerability in the web-based management interface of Cisco IMC could allow a
|
| 33 |
CVE-2026-34733
WWBN AVideo is an open source video platform. In versions 26.0 and prior, the AV
|
| 33 |
CVE-2026-34978
OpenPrinting CUPS is an open source printing system for Linux and other Unix-lik
|
| 33 |
CVE-2026-32036
OpenClaw gateway plugin versions prior to 2026.2.26 contain a path traversal vul
|
| 33 |
CVE-2026-33882
### Impact
The markdown preview endpoint could be manipulated to return augmente
|
| 33 |
CVE-2026-32026
OpenClaw versions prior to 2026.2.24 contain an improper path validation vulnera
|
| 33 |
CVE-2026-33750
### Impact
A brace pattern with a zero step value (e.g., `{1..2..0}`) causes th
|
| 33 |
CVE-2026-32004
OpenClaw versions prior to 2026.3.2 contain an authentication bypass vulnerabili
|
| 33 |
CVE-2026-3864
A vulnerability was discovered in the Kubernetes CSI Driver for NFS where the su
|
| 33 |
CVE-2026-33768
Astro is a web framework. Prior to version 10.0.2, the @astrojs/vercel serverles
|
| 33 |
CVE-2026-34750
Payload is a free and open source headless content management system. Prior to v
|
| 33 |
CVE-2026-22168
OpenClaw versions prior to 2026.2.21 contain an approval-integrity mismatch vuln
|
| 33 |
CVE-2026-34832
Scoold is a Q&A and a knowledge sharing platform for teams. Prior to version 1.6
|
| 33 |
CVE-2026-35549
An issue was discovered in MariaDB Server before 11.4.10, 11.5.x through 11.8.x
|
| 33 |
CVE-2026-34787
Emlog is an open source website building system. In versions 2.6.2 and prior, a
|
| 33 |
CVE-2026-32733
Halloy is an IRC application written in Rust. Prior to commit 0f77b2cfc5f822517a
|
| 33 |
CVE-2026-21886
OpenCTI is an open source platform for managing cyber threat intelligence knowle
|
| 33 |
CVE-2025-67115
A path traversal vulnerability in /ftl/web/setup.cgi in Small Cell Sercomm SCE42
|
| 33 |
CVE-2026-2375
The App Builder - Create Native Android & iOS Apps On The Flight plugin for Word
|
| 33 |
CVE-2026-33148
Tandoor Recipes is an application for managing recipes, planning meals, and buil
|
| 33 |
CVE-2026-33693
### Summary
The `v4_is_invalid()` function in `activitypub-federation-rust` (`s
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 730d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2298d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2111d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1725d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2228d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 4976d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1196d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 998d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3753d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 900d |