Total CVEs
16540
last 90 days
Avg Priority
35.8
of max 220
KEV
35
actively exploited
POC
3147
public exploits
Unpatched
4127
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
185
CVE-2026-1731
BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain
141
CVE-2026-20131
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM
137
CVE-2026-1603
An authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthen
134
CVE-2026-22769
Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credentia
129
CVE-2026-33825
Insufficient granularity of access control in Microsoft Defender allows an authorized attacker to el
124
CVE-2026-21643
An improper neutralization of special elements used in an sql command ('sql injection') vulnerabilit
124
CVE-2026-35616
A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an
119
CVE-2026-39987
## Summary
Marimo (19.6k stars) has a Pre-Auth RCE vulnerability. The terminal WebSocket endpoint `
119
CVE-2026-3910
Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.75 allowed a remote attacker
119
CVE-2026-3909
Out of bounds write in Skia in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to per
Priority Distribution
| Priority | CVE |
|---|---|
| 18 |
CVE-2026-40077
Beszel is a server monitoring platform. Prior to 0.18.7, some API endpoints in t
|
| 18 |
CVE-2025-27550
IBM Jazz Reporting Service could allow an authenticated user on the host network
|
| 18 |
CVE-2025-1823
IBM Jazz Reporting Service could allow an authenticated user on the host network
|
| 18 |
CVE-2025-2134
IBM Jazz Reporting Service could allow an authenticated user on the network to a
|
| 18 |
CVE-2026-20137
In Splunk Enterprise versions below 10.2.0, 10.0.3, 9.4.5, 9.3.7, and 9.2.9, and
|
| 18 |
CVE-2026-35400
LORIS (Longitudinal Online Research and Imaging System) is a self-hosted web app
|
| 18 |
CVE-2025-52603
HCL Connections is vulnerable to information disclosure. In a very specific use
|
| 18 |
CVE-2026-33422
Discourse is an open-source discussion platform. Prior to versions 2026.3.0-late
|
| 18 |
CVE-2026-1282
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6
|
| 18 |
CVE-2026-24310
Due to missing authorization check in SAP NetWeaver Application Server for ABAP,
|
| 18 |
CVE-2026-25764
OpenProject is an open-source, web-based project management software. Prior to v
|
| 18 |
CVE-2026-33551
An issue was discovered in OpenStack Keystone 14 through 26 before 26.1.1, 27.0.
|
| 18 |
CVE-2026-33426
Discourse is an open-source discussion platform. Prior to versions 2026.3.0-late
|
| 18 |
CVE-2026-40334
libgphoto2 is a camera access and control library. In versions up to and includi
|
| 18 |
CVE-2025-67852
A flaw was found in Moodle. An open redirect vulnerability in the OAuth login fl
|
| 18 |
CVE-2025-14594
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.11
|
| 18 |
CVE-2025-12704
GitLab has remediated an issue in GitLab EE affecting all versions from 18.2 bef
|
| 18 |
CVE-2026-35679
Zcash zcashd before 6.12.0 allows invalid transactions to be accepted under cert
|
| 18 |
CVE-2026-34454
OAuth2 Proxy is a reverse proxy that provides authentication using OAuth2 provid
|
| 18 |
CVE-2026-40341
libgphoto2 is a camera access and control library. In versions up to and includi
|
| 18 |
CVE-2025-55270
HCL Aftermarket DPC is affected by Improper Input Validation which allows an att
|
| 18 |
CVE-2026-41663
## Summary
Several administrative operations in Admidio's preferences module (d
|
| 17 |
CVE-2026-23686
Due to a CRLF Injection vulnerability in SAP NetWeaver Application Server Java,
|
| 17 |
CVE-2026-32772
telnet in GNU inetutils through 2.7 allows servers to read arbitrary environment
|
| 17 |
CVE-2026-33404
Pi-hole Admin Interface is a web interface for managing Pi-hole, a network-level
|
| 17 |
CVE-2026-21422
Dell PowerScale OneFS, versions 9.10.0.0 through 9.10.1.5 and versions 9.11.0.0
|
| 17 |
CVE-2025-68467
Dark Reader is an accessibility browser extension that makes web pages colors da
|
| 17 |
CVE-2026-35361
The mknod utility in uutils coreutils fails to handle security labels atomically
|
| 17 |
CVE-2026-2271
A flaw was found in GIMP's PSP (Paint Shop Pro) file parser. A remote attacker c
|
| 17 |
CVE-2026-21249
External control of file name or path in Windows NTLM allows an unauthorized att
|
| 17 |
CVE-2026-33529
# Authenticated Path Traversal to RCE via Configuration Import
## Summary
An a
|
| 17 |
CVE-2026-20730
A vulnerability exists in BIG-IP Edge Client and browser VPN clients on Windows
|
| 17 |
CVE-2026-29179
October is a Content Management System (CMS) and web platform. Prior to 3.7.16 a
|
| 17 |
CVE-2026-28864
This issue was addressed with improved permissions checking. This issue is fixed
|
| 17 |
CVE-2026-28893
A privacy issue was addressed with improved handling of temporary files. This is
|
| 17 |
CVE-2025-15320
Tanium addressed a denial of service vulnerability in Tanium Client.
|
| 17 |
CVE-2025-26474
in OpenHarmony v5.0.3 and prior versions allow a local attacker cause informatio
|
| 17 |
CVE-2026-20684
A permissions issue was addressed with additional restrictions. This issue is fi
|
| 17 |
CVE-2026-35377
A logic error in the env utility of uutils coreutils causes a failure to correct
|
| 17 |
CVE-2025-12343
A flaw was found in FFmpeg’s TensorFlow backend within the libavfilter/dnn_backe
|
| 17 |
CVE-2026-22760
Dell Device Management Agent (DDMA), versions prior to 26.02, contain an Imprope
|
| 17 |
CVE-2025-15567
Insufficient protection mechanisms in the Health Module may lead to partial info
|
| 17 |
CVE-2026-0965
A flaw was found in libssh where it can attempt to open arbitrary files during c
|
| 17 |
CVE-2025-25058
Improper initialization for some ESXi kernel mode driver for the Intel(R) Ethern
|
| 17 |
CVE-2026-20681
A privacy issue was addressed with improved private data redaction for log entri
|
| 17 |
CVE-2026-20992
Improper authorization in Settings prior to SMR Mar-2026 Release 1 allows local
|
| 17 |
CVE-2026-20601
A permissions issue was addressed with additional restrictions. This issue is fi
|
| 17 |
CVE-2026-20646
A logging issue was addressed with improved data redaction. This issue is fixed
|
| 17 |
CVE-2026-0639
in OpenHarmony v6.0 and prior versions allow a local attacker case DOS through m
|
| 17 |
CVE-2026-21786
HCL Sametime for iOS is impacted by a sensitive information disclosure. Hostnam
|
| 17 |
CVE-2026-27007
OpenClaw is a personal AI assistant. Prior to version 2026.2.15, `normalizeForHa
|
| 17 |
CVE-2026-32020
OpenClaw versions prior to 2026.2.22 contain a path traversal vulnerability in t
|
| 17 |
CVE-2026-35379
A logic error in the tr utility of uutils coreutils causes the program to incorr
|
| 17 |
CVE-2025-52642
HCL AION is affected by a vulnerability where internal filesystem paths may be e
|
| 17 |
CVE-2026-21791
HCL Sametime for Android is impacted by a sensitive information disclosure. Hos
|
| 17 |
CVE-2026-35381
A logic error in the cut utility of uutils coreutils causes the utility to ignor
|
| 17 |
CVE-2026-4040
A vulnerability was identified in OpenClaw up to 2026.2.17. This issue affects t
|
| 17 |
CVE-2025-70330
Easy Grade Pro 4.1.0.2 contains a file parsing logic flaw in the handling of pro
|
| 17 |
CVE-2026-20656
A logic issue was addressed with improved validation. This issue is fixed in iOS
|
| 17 |
CVE-2026-35094
A flaw was found in libinput. An attacker capable of deploying a Lua plugin file
|
| 17 |
CVE-2026-34766
### Impact
The `select-usb-device` event callback did not validate the chosen de
|
| 17 |
CVE-2026-28264
Dell PowerProtect Agent Service, version(s) prior to 20.1, contain(s) an Incorre
|
| 17 |
CVE-2026-35346
The comm utility in uutils coreutils silently corrupts data by performing lossy
|
| 17 |
CVE-2026-20663
The issue was resolved by sanitizing logging. This issue is fixed in iOS 26.3 an
|
| 17 |
CVE-2026-35353
The mkdir utility in uutils coreutils incorrectly applies permissions when using
|
| 17 |
CVE-2026-35367
The nohup utility in uutils coreutils creates its default output file, nohup.out
|
| 17 |
CVE-2026-21727
---
title: Cross-Tenant Legacy Correlation Disclosure and Deletion
draft: false
|
| 17 |
CVE-2026-4761
When
a certificate and its private key are installed in the Windows machine
cert
|
| 17 |
CVE-2025-43236
A type confusion issue was addressed with improved memory handling. This issue i
|
| 17 |
CVE-2025-33081
IBM Concert 1.0.0 through 2.1.0 stores potentially sensitive information in log
|
| 17 |
CVE-2025-66319
Permission control vulnerability in the resource scheduling module. Impact: Succ
|
| 17 |
CVE-2025-8860
A flaw was found in QEMU in the uefi-vars virtual device. When the guest writes
|
| 17 |
CVE-2025-33030
Improper conditions check in some firmware for some Intel(R) NPU Drivers within
|
| 17 |
CVE-2026-21715
A flaw in Node.js Permission Model filesystem enforcement leaves `fs.realpathSyn
|
| 16 |
CVE-2026-35342
The mktemp utility in uutils coreutils fails to properly handle an empty TMPDIR
|
| 16 |
CVE-2026-35371
The id utility in uutils coreutils exhibits incorrect behavior in its "pretty pr
|
| 16 |
CVE-2026-35373
A logic error in the ln utility of uutils coreutils causes the program to reject
|
| 16 |
CVE-2026-35375
A logic error in the split utility of uutils coreutils causes the corruption of
|
| 16 |
CVE-2026-41498
### Summary
The Team API endpoints use #[IsGranted('edit_team')] instead of #[Is
|
| 16 |
CVE-2026-35378
A logic error in the expr utility of uutils coreutils causes the program to eval
|
| 16 |
CVE-2026-35344
The dd utility in uutils coreutils suppresses errors during file truncation oper
|
| 16 |
CVE-2026-35343
The cut utility in uutils coreutils incorrectly handles the -s (only-delimited)
|
| 16 |
CVE-2026-31369
PcManager is affected by type privilege bypass, successful exploitation of this
|
| 16 |
CVE-2026-41988
uuid before 14.0.0 can make unexpected writes when external output buffers are u
|
| 16 |
CVE-2026-35249
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (comp
|
| 16 |
CVE-2026-25211
Llama Stack (aka llama-stack) before 0.4.0rc3 does not censor the pgvector passw
|
| 16 |
CVE-2026-25815
Fortinet FortiOS through 7.6.6 allows attackers to decrypt LDAP credentials stor
|
| 16 |
CVE-2026-20732
A vulnerability exists in an undisclosed BIG-IP Configuration utility page that
|
| 16 |
CVE-2026-22741
Spring MVC and WebFlux applications are vulnerable to cache poisoning when resol
|
| 16 |
CVE-2026-39419
MaxKB is an open-source AI assistant for enterprise. In versions 2.7.1 and below
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 747d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2315d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2128d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1742d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2245d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 4993d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1213d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 1015d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3770d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 917d |