Total CVEs
16540
last 90 days
Avg Priority
35.8
of max 220
KEV
35
actively exploited
POC
3146
public exploits
Unpatched
4128
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
185
CVE-2026-1731
BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain
141
CVE-2026-20131
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM
137
CVE-2026-1603
An authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthen
134
CVE-2026-22769
Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credentia
129
CVE-2026-33825
Insufficient granularity of access control in Microsoft Defender allows an authorized attacker to el
124
CVE-2026-21643
An improper neutralization of special elements used in an sql command ('sql injection') vulnerabilit
124
CVE-2026-35616
A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an
119
CVE-2026-39987
## Summary
Marimo (19.6k stars) has a Pre-Auth RCE vulnerability. The terminal WebSocket endpoint `
119
CVE-2026-3910
Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.75 allowed a remote attacker
119
CVE-2026-3909
Out of bounds write in Skia in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to per
Priority Distribution
| Priority | CVE |
|---|---|
| 20 |
CVE-2026-42095
bookserver in KDE Arianna before 26.04.1 allows attackers to read files over a s
|
| 20 |
CVE-2026-3633
A flaw was found in libsoup. A remote attacker, by controlling the method parame
|
| 20 |
CVE-2026-3632
A flaw was found in libsoup, a library used by applications to send network requ
|
| 20 |
CVE-2026-3634
A flaw was found in libsoup. An attacker controlling the value used to set the C
|
| 20 |
CVE-2025-66038
OpenSC is an open source smart card tools and middleware. Prior to version 0.27.
|
| 20 |
CVE-2026-34768
### Impact
On Windows, `app.setLoginItemSettings({openAtLogin: true})` wrote the
|
| 20 |
CVE-2025-66037
OpenSC is an open source smart card tools and middleware. Prior to version 0.27.
|
| 20 |
CVE-2025-31648
Improper handling of values in the microcode flow for some Intel(R) Processor Fa
|
| 19 |
CVE-2026-3470
A vulnerability exists in the SonicWall Email Security appliance due to improper
|
| 19 |
CVE-2026-2733
A flaw was identified in the Docker v2 authentication endpoint of Keycloak, wher
|
| 19 |
CVE-2026-25423
Missing Authorization vulnerability in creativeinteractivemedia Real 3D FlipBook
|
| 19 |
CVE-2025-36183
IBM watsonx.data 2.2 through 2.2.1 IBM Lakehouse could allow a privileged user t
|
| 19 |
CVE-2026-27150
Discourse is an open source discussion platform. Prior to versions 2025.12.2, 20
|
| 19 |
CVE-2026-27152
Discourse is an open source discussion platform. Prior to versions 2025.12.2, 20
|
| 19 |
CVE-2025-14573
Mattermost versions 10.11.x <= 10.11.9 fail to enforce invite permissions when u
|
| 19 |
CVE-2026-2290
The Post Affiliate Pro plugin for WordPress is vulnerable to Server-Side Request
|
| 19 |
CVE-2026-22014
Vulnerability in the Oracle User Management product of Oracle E-Business Suite (
|
| 19 |
CVE-2026-32715
AnythingLLM is an application that turns pieces of content into context that any
|
| 19 |
CVE-2026-26230
Mattermost versions 10.11.x <= 10.11.10 fail to properly validate permission req
|
| 19 |
CVE-2025-66215
OpenSC is an open source smart card tools and middleware. Prior to version 0.27.
|
| 19 |
CVE-2025-49010
OpenSC is an open source smart card tools and middleware. Prior to version 0.27.
|
| 19 |
CVE-2026-0849
Malformed ATAES132A responses with an oversized length field overflow a 52-byte
|
| 19 |
CVE-2025-67860
A vulnerability has been identified in the NeuVector scanner where the scanner p
|
| 19 |
CVE-2025-22873
It was possible to improperly access the parent directory of an os.Root by openi
|
| 19 |
CVE-2026-31051
An issue in Hostbill v.2025-11-24 and 2025-12-01 allows a remote attacker to cau
|
| 19 |
CVE-2026-24733
Improper Input Validation vulnerability in Apache Tomcat.
Tomcat did not limit
|
| 19 |
CVE-2026-22877
An arbitrary file-read vulnerability exists in XWEB Pro version 1.12.1
and prio
|
| 19 |
CVE-2025-11143
The Jetty URI parser has some key differences to other common parsers when evalu
|
| 19 |
CVE-2026-1582
The WP All Export plugin for WordPress is vulnerable to Sensitive Information Ex
|
| 19 |
CVE-2026-3184
A flaw was found in util-linux. Improper hostname canonicalization in the `login
|
| 19 |
CVE-2026-26227
VideoLAN VLC for Android prior to version 3.7.0 contains an authentication bypas
|
| 19 |
CVE-2026-23747
Golioth Firmware SDK version 0.10.0 prior to 0.22.0, fixed in commit 48f521b, co
|
| 19 |
CVE-2026-22204
wpDiscuz before 7.6.47 contains an email header injection vulnerability that all
|
| 19 |
CVE-2026-22885
A vulnerability exists in EnOcean SmartServer IoT version 4.60.009 and
prior, w
|
| 19 |
CVE-2026-30848
Parse Server is an open source backend that can be deployed to any infrastructur
|
| 19 |
CVE-2026-40184
TREK is a collaborative travel planner. Prior to 2.7.2, TREK served uploaded pho
|
| 19 |
CVE-2025-52623
HCL AION is affected by an Autocomplete HTML Attribute Not Disabled for Password
|
| 19 |
CVE-2026-23748
Golioth Firmware SDK version 0.10.0 prior to 0.22.0, fixed in commit d7f55b38, c
|
| 19 |
CVE-2026-22629
An improper restriction of excessive authentication attempts vulnerability in Fo
|
| 19 |
CVE-2026-21388
Mattermost Plugins versions <=2.3.1 fail to limit the request body size on the {
|
| 19 |
CVE-2026-22018
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Ente
|
| 19 |
CVE-2025-52631
HCL AION is affected by a Missing or Insecure HTTP Strict-Transport-Security (HS
|
| 19 |
CVE-2026-24661
Mattermost Plugins versions <=2.1.3.0 fail to limit the request body size on the
|
| 19 |
CVE-2025-71264
Mumble before 1.6.870 is prone to an out-of-bounds array access, which may resul
|
| 19 |
CVE-2026-4633
A flaw was found in Keycloak. A remote attacker can exploit differential error m
|
| 19 |
CVE-2026-22746
Vulnerability in Spring Spring Security. If an application is using the UserDeta
|
| 19 |
CVE-2026-34166
## Summary
The `replace` filter in LiquidJS incorrectly accounts for memory usa
|
| 19 |
CVE-2026-32595
Traefik is an HTTP reverse proxy and load balancer. Versions 2.11.40 and below,
|
| 19 |
CVE-2026-25674
An issue was discovered in 6.0 before 6.0.3, 5.2 before 5.2.12, and 4.2 before 4
|
| 19 |
CVE-2026-35448
## Summary
The BlockonomicsYPT plugin's `check.php` endpoint returns payment or
|
| 19 |
CVE-2026-40279
BACnet Stack is a BACnet open source protocol stack C library for embedded syste
|
| 19 |
CVE-2025-52629
HCL AION is susceptible to Missing Content-Security-Policy.
An The absence of
|
| 19 |
CVE-2026-35537
An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. Unsafe de
|
| 19 |
CVE-2026-40097
Step CA is an online certificate authority for secure, automated certificate man
|
| 19 |
CVE-2026-2708
A request smuggling vulnerability exists in libsoup's HTTP/1 header parsing logi
|
| 19 |
CVE-2026-42040
Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.
|
| 19 |
CVE-2026-33877
ApostropheCMS is an open-source Node.js content management system. Versions 4.28
|
| 19 |
CVE-2026-26961
Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, a
|
| 19 |
CVE-2026-33490
## Summary
The `mount()` method in h3 uses a simple `startsWith()` check to det
|
| 19 |
CVE-2026-22008
Vulnerability in Oracle Java SE (component: Libraries). The supported version
|
| 19 |
CVE-2026-40263
### Summary
A timing side-channel in the login endpoint allows unauthenticated a
|
| 19 |
CVE-2025-31958
HCL BigFix Service Management is susceptible to HTTP Request Smuggling. HTTP re
|
| 19 |
CVE-2025-67806
The login mechanism of Sage DPW 2021_06_004 displays distinct responses for vali
|
| 19 |
CVE-2025-62328
HCL Nomad server on Domino did not configure the frame-ancestors directive in th
|
| 19 |
CVE-2026-31991
OpenClaw versions prior to 2026.2.26 contain an authorization bypass vulnerabili
|
| 19 |
CVE-2025-15323
Tanium addressed an improper certificate validation vulnerability in Tanium Appl
|
| 19 |
CVE-2026-33070
FileRise is a self-hosted web file manager / WebDAV server. In versions prior to
|
| 19 |
CVE-2026-32109
Copyparty is a portable file server. Prior to 1.20.12, if an attacker has been g
|
| 19 |
CVE-2025-14592
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6
|
| 19 |
CVE-2025-13718
IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 thro
|
| 19 |
CVE-2026-32690
Secrets in Variables saved as JSON dictionaries were not properly redacted - in
|
| 19 |
CVE-2026-25224
Fastify is a fast and low overhead web framework, for Node.js. Prior to version
|
| 19 |
CVE-2026-26013
LangChain is a framework for building agents and LLM-powered applications. Prior
|
| 19 |
CVE-2026-4363
GitLab has remediated an issue in GitLab EE affecting all versions from 18.1 bef
|
| 19 |
CVE-2026-33597
PRSD detection denial of service
|
| 19 |
CVE-2026-24934
The DDNS function uses an insecure HTTP connection or fails to validate the SSL/
|
| 19 |
CVE-2026-40194
phpseclib is a PHP secure communications library. Prior to 3.0.51, 2.0.53, and 1
|
| 19 |
CVE-2026-37977
A flaw was found in Keycloak. A remote attacker can exploit a Cross-Origin Resou
|
| 18 |
CVE-2025-55275
HCL Aftermarket DPC is affected by Admin Session Concurrency vulnerability using
|
| 18 |
CVE-2026-40969
The raw message of every server-side AuthenticationException is returned to the
|
| 18 |
CVE-2026-32722
## Summary
Prior to Memray 1.19.2, Memray rendered the command line of the trac
|
| 18 |
CVE-2026-31863
Anytype Heart is the middleware library for Anytype. The challenge-based authent
|
| 18 |
CVE-2026-0995
An issue has been identified in Arm C1-Pro before r1p2-50eac0, where, under cert
|
| 18 |
CVE-2026-35362
The safe_traversal module in uutils coreutils, which provides protection against
|
| 18 |
CVE-2026-5115
The PaperCut NG/MF (specifically, the embedded application for Konica Minolta de
|
| 18 |
CVE-2026-24509
Dell Alienware Command Center (AWCC), versions prior to 6.12.24.0, contain an Im
|
| 18 |
CVE-2026-35386
In OpenSSH before 10.3, command execution can occur via shell metacharacters in
|
| 18 |
CVE-2026-2345
Proctorio Chrome Extension is a browser extension used for online proctoring. Th
|
| 18 |
CVE-2026-32909
OpenClaw before 2026.2.19 contains a command injection vulnerability in tools.ex
|
| 18 |
CVE-2026-40077
Beszel is a server monitoring platform. Prior to 0.18.7, some API endpoints in t
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 747d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2315d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2128d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1742d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2245d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 4992d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1213d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 1015d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3770d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 917d |