Total CVEs
1372
last 7 days
Avg Priority
20.7
of max 220
KEV
1
actively exploited
POC
64
public exploits
Unpatched
217
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
Priority Distribution
| Priority | CVE |
|---|---|
| 116 |
CVE-2026-48027
Nx Console is the user interface for Nx & Lerna. On 19 May 2026, a malicious ver
|
| 66 |
CVE-2026-24444
SDMC NE6037 cable modem routers running firmware 7.1.6.0.25 and 7.1.6.1.9_B9 con
|
| 63 |
CVE-2026-7862
The Eupago Gateway For Woocommerce WordPress plugin before 4.7.2 does not proper
|
| 63 |
CVE-2026-47114
IINA before 1.4.3 contains a user-assisted command execution vulnerability that
|
| 57 |
CVE-2026-9346
A flaw has been found in Edimax EW-7438RPn up to 1.31. This impacts the function
|
| 57 |
CVE-2026-9345
A vulnerability was detected in Edimax EW-7438RPn up to 1.31. This affects the f
|
| 57 |
CVE-2026-9360
A security flaw has been discovered in Edimax EW-7438RPn 1.28a. Affected by this
|
| 57 |
CVE-2026-9344
A security vulnerability has been detected in Edimax EW-7438RPn up to 1.31. The
|
| 57 |
CVE-2026-9348
A vulnerability was found in Edimax EW-7438RPn up to 1.31. Affected by this vuln
|
| 57 |
CVE-2026-9295
A security flaw has been discovered in Edimax BR-6428NS 1.10. This affects the f
|
| 57 |
CVE-2026-9294
A vulnerability was identified in Edimax BR-6428NS 1.10. The impacted element is
|
| 56 |
CVE-2025-70103
Heap buffer overflow vulnerability in libjxl 0.12.0 via crafted PBM images to th
|
| 56 |
CVE-2026-31266
Craft CMS 5.9.5 and earlier contains a Missing Authorization vulnerability in th
|
| 52 |
CVE-2026-41141
EspoCRM is an open source customer relationship management application. Prior to
|
| 49 |
CVE-2026-9367
A vulnerability was determined in NousResearch hermes-agent up to 5157f5427f1948
|
| 48 |
CVE-2026-9351
A security flaw has been discovered in NousResearch hermes-agent up to 2026.4.16
|
| 48 |
CVE-2026-9368
A vulnerability was identified in NousResearch hermes-agent up to 2026.4.16. Thi
|
| 48 |
CVE-2026-9353
A security vulnerability has been detected in NousResearch hermes-agent up to 20
|
| 48 |
CVE-2026-9366
A vulnerability was found in NousResearch hermes-agent 2026.4.23. The impacted e
|
| 48 |
CVE-2026-9354
A vulnerability was detected in NousResearch hermes-agent up to 2026.4.16. The a
|
| 48 |
CVE-2026-9372
A flaw has been found in ItzCrazyKns Vane up to 1.12.1. This vulnerability affec
|
| 48 |
CVE-2026-9350
A vulnerability was identified in NousResearch hermes-agent up to 2026.4.16. Thi
|
| 48 |
CVE-2026-9355
A flaw has been found in SourceCodester Hospitals Patient Records Management Sys
|
| 48 |
CVE-2026-9349
A vulnerability was determined in calcom cal.diy up to 4.9.4. Affected by this i
|
| 48 |
CVE-2026-9356
A vulnerability has been found in SourceCodester Hospitals Patient Records Manag
|
| 48 |
CVE-2026-9352
A weakness has been identified in NousResearch hermes-agent up to 2026.4.23. Thi
|
| 48 |
CVE-2026-9364
A flaw has been found in projectworlds Online Art Gallery Shop 1.0. Impacted is
|
| 48 |
CVE-2026-9580
A vulnerability was determined in JeecgBoot up to 3.9.1. The affected element is
|
| 48 |
CVE-2026-9584
A security vulnerability has been detected in code-projects Project Management S
|
| 48 |
CVE-2026-9603
A security vulnerability has been detected in SourceCodester eDoc Doctor Appoint
|
| 48 |
CVE-2026-9606
A vulnerability has been found in itsourcecode Courier Management System 1.0. Im
|
| 42 |
CVE-2026-46345
**Relevant Products/Components:**
* `trestle/core/commands/author/jinja.py`
* `
|
| 42 |
CVE-2025-70116
A NULL pointer dereference in GPAC MP4Box: when parsing certain truncated MP4 fi
|
| 42 |
CVE-2026-41160
EspoCRM is an open source customer relationship management application. Prior to
|
| 42 |
CVE-2026-9807
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.9
|
| 35 |
CVE-2026-9365
A vulnerability has been found in Ettercap up to 0.8.3. The affected element is
|
| 35 |
CVE-2026-9371
A security vulnerability has been detected in ItzCrazyKns Vane up to 1.12.1. Aff
|
| 35 |
CVE-2026-9306
A security vulnerability has been detected in QuantumNous new-api up to 0.12.1.
|
| 35 |
CVE-2026-9370
A weakness has been identified in ulisesbocchio jasypt-spring-boot up to 3.0.5/4
|
| 31 |
CVE-2026-9343
A weakness has been identified in Edimax EW-7438RPn up to 1.31. The affected ele
|
| 31 |
CVE-2026-9347
A vulnerability has been found in Edimax EW-7438RPn up to 1.31. Affected is the
|
| 31 |
CVE-2026-9362
A security vulnerability has been detected in Edimax EW-7438RPn 1.12. This vulne
|
| 31 |
CVE-2026-9363
A vulnerability was detected in Edimax EW-7438RPn 1.12. This issue affects the f
|
| 31 |
CVE-2026-9361
A weakness has been identified in Edimax EW-7438RPn 1.12. This affects the funct
|
| 31 |
CVE-2026-9359
A vulnerability was identified in Edimax EW-7438RPn 1.28a. Affected by this vuln
|
| 31 |
CVE-2026-9297
A security vulnerability has been detected in Edimax BR-6428NS 1.10. Affected is
|
| 31 |
CVE-2026-9296
A weakness has been identified in Edimax BR-6428NS 1.10. This impacts the functi
|
| 31 |
CVE-2026-9302
A vulnerability was determined in 546669204 vps-inventory-monitoring up to 98c00
|
| 31 |
CVE-2026-9298
A vulnerability was detected in omec-project amf up to 2.1.1. Affected by this v
|
| 31 |
CVE-2026-9299
A flaw has been found in omec-project amf up to 2.1.1. Affected by this issue is
|
| 31 |
CVE-2026-9300
A vulnerability has been found in omec-project amf up to 2.1.1. This affects an
|
| 31 |
CVE-2026-9301
A vulnerability was found in omec-project amf up to 2.1.1. This vulnerability af
|
| 31 |
CVE-2026-9358
A vulnerability was determined in postcss up to 7.1.1. Affected is the function
|
| 31 |
CVE-2026-9583
A weakness has been identified in SourceCodester CET Automated Grading System wi
|
| 31 |
CVE-2026-9607
A vulnerability was found in itsourcecode Courier Management System 1.0. The aff
|
| 31 |
CVE-2026-9342
A security flaw has been discovered in SourceCodester Hospitals Patient Records
|
| 31 |
CVE-2026-9305
A weakness has been identified in QuantumNous new-api up to 0.12.1. The impacted
|
| 31 |
CVE-2026-9303
A vulnerability was identified in calcom cal.diy up to 4.9.4. Impacted is an unk
|
| 30 |
CVE-2026-9579
A vulnerability was found in JeecgBoot up to 3.9.1. Impacted is the function use
|
| 30 |
CVE-2026-9604
A vulnerability was detected in JeecgBoot up to 3.9.1. This vulnerability affect
|
| 30 |
CVE-2026-9582
A security flaw has been discovered in SourceCodester CET Automated Grading Syst
|
| 30 |
CVE-2026-9369
A security flaw has been discovered in NousResearch hermes-agent 2026.4.23. Affe
|
| 27 |
CVE-2026-9304
A security flaw has been discovered in calcom cal.diy up to 4.9.4. The affected
|
| 0 |
CVE-2026-45287
### Summary
`go.opentelemetry.io/otel/schema/v1.0` and `go.opentelemetry.io/ote
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 776d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2344d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2157d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1771d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2274d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 5021d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1242d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 1044d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3798d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 946d |