Total CVEs
16544
last 90 days
Avg Priority
35.9
of max 220
KEV
35
actively exploited
POC
3152
public exploits
Unpatched
4128
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
185
CVE-2026-1731
BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain
141
CVE-2026-20131
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM
137
CVE-2026-1603
An authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthen
134
CVE-2026-22769
Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credentia
129
CVE-2026-33825
Insufficient granularity of access control in Microsoft Defender allows an authorized attacker to el
124
CVE-2026-21643
An improper neutralization of special elements used in an sql command ('sql injection') vulnerabilit
124
CVE-2026-35616
A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an
119
CVE-2026-39987
## Summary
Marimo (19.6k stars) has a Pre-Auth RCE vulnerability. The terminal WebSocket endpoint `
119
CVE-2026-3910
Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.75 allowed a remote attacker
119
CVE-2026-3909
Out of bounds write in Skia in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to per
Priority Distribution
| Priority | CVE |
|---|---|
| 16 |
CVE-2026-25815
Fortinet FortiOS through 7.6.6 allows attackers to decrypt LDAP credentials stor
|
| 16 |
CVE-2026-20732
A vulnerability exists in an undisclosed BIG-IP Configuration utility page that
|
| 16 |
CVE-2026-22741
Spring MVC and WebFlux applications are vulnerable to cache poisoning when resol
|
| 16 |
CVE-2026-39419
MaxKB is an open-source AI assistant for enterprise. In versions 2.7.1 and below
|
| 16 |
CVE-2026-22545
Mattermost versions 10.11.x <= 10.11.10 fail to validate user's authentication m
|
| 16 |
CVE-2026-33436
Stirling-PDF is a locally hosted web application that facilitates various operat
|
| 16 |
CVE-2026-20671
A logic issue was addressed with improved checks. This issue is fixed in watchOS
|
| 16 |
CVE-2026-0102
Under specific conditions, a malicious webpage may trigger autofill population a
|
| 16 |
CVE-2026-21295
Adobe Commerce versions 2.4.9-alpha3, 2.4.8-p3, 2.4.7-p8, 2.4.6-p13, 2.4.5-p15,
|
| 16 |
CVE-2025-52633
HCL AION is affected by a Permanent Cookie Containing Sensitive Session Informat
|
| 16 |
CVE-2026-35538
An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. Unsanitiz
|
| 16 |
CVE-2026-32006
OpenClaw versions prior to 2026.2.26 contain an authorization bypass vulnerabili
|
| 16 |
CVE-2026-3929
Side-channel information leakage in ResourceTiming in Google Chrome prior to 146
|
| 16 |
CVE-2025-15289
Tanium addressed an improper access controls vulnerability in Interact.
|
| 16 |
CVE-2026-39396
OpenBao is an open source identity-based secrets management system. Prior to ver
|
| 16 |
CVE-2026-29776
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0
|
| 16 |
CVE-2026-3189
A weakness has been identified in feiyuchuixue sz-boot-parent up to 1.3.2-beta.
|
| 16 |
CVE-2026-2475
IBM Verify Identity Access Container 11.0 through 11.0.2 and IBM Security Verify
|
| 16 |
CVE-2026-27937
October is a Content Management System (CMS) and web platform. Prior to 3.7.16 a
|
| 16 |
CVE-2025-12150
A flaw was found in Keycloak’s WebAuthn registration component. This vulnerabili
|
| 16 |
CVE-2026-0968
A flaw was found in libssh in which a malicious SFTP (SSH File Transfer Protocol
|
| 16 |
CVE-2026-41488
LangChain is a framework for building agents and LLM-powered applications. Prior
|
| 16 |
CVE-2026-35387
OpenSSH before 10.3 can use unintended ECDSA algorithms. Listing of any ECDSA al
|
| 16 |
CVE-2026-3155
The OneSignal - Web Push Notifications plugin for WordPress is vulnerable to aut
|
| 16 |
CVE-2026-2366
A flaw was found in Keycloak. An authorization bypass vulnerability in the Keycl
|
| 16 |
CVE-2026-33212
Weblate is a web based localization tool. In versions prior to 5.17, the tasks A
|
| 16 |
CVE-2025-14808
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 could allow an attac
|
| 16 |
CVE-2025-14811
IBM Sterling Partner Engagement Manager 6.2.3.0 through 6.2.3.5 and 6.2.4.0 thro
|
| 16 |
CVE-2026-4874
A flaw was found in Keycloak. An authenticated attacker can perform Server-Side
|
| 16 |
CVE-2026-29071
Open WebUI is a self-hosted artificial intelligence platform designed to operate
|
| 16 |
CVE-2026-7360
Insufficient validation of untrusted input. in Compositing in Google Chrome prio
|
| 16 |
CVE-2026-33405
Pi-hole Admin Interface is a web interface for managing Pi-hole, a network-level
|
| 16 |
CVE-2026-32696
NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. In NanoMQ
|
| 16 |
CVE-2025-61634
Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associate
|
| 16 |
CVE-2026-24513
A security issue was discovered in ingress-nginx where the protection afforded b
|
| 16 |
CVE-2026-40109
Flux notification-controller is the event forwarder and notification dispatcher
|
| 16 |
CVE-2026-24320
Due to improper memory management in SAP NetWeaver and ABAP Platform (Applicatio
|
| 16 |
CVE-2026-34067
### Impact
`HistoryTreeProof::verify` panics on a malformed proof where `history
|
| 16 |
CVE-2026-0397
When the internal webserver is enabled (default is disabled), an attacker might
|
| 16 |
CVE-2026-20796
Mattermost versions 10.11.x <= 10.11.9 fail to properly validate channel members
|
| 16 |
CVE-2026-6313
Insufficient policy enforcement in CORS in Google Chrome prior to 147.0.7727.101
|
| 16 |
CVE-2026-6312
Insufficient policy enforcement in Passwords in Google Chrome prior to 147.0.772
|
| 16 |
CVE-2026-7351
Race in MHTML in Google Chrome prior to 147.0.7727.138 allowed an attacker who c
|
| 16 |
CVE-2026-33599
A rogue backend can send a crafted SVCB response to a Discovery of Designated Re
|
| 16 |
CVE-2026-33596
A client might theoretically be able to cause a mismatch between queries sent to
|
| 16 |
CVE-2026-0396
An attacker might be able to inject HTML content into the internal web dashboard
|
| 16 |
CVE-2025-55271
HCL Aftermarket DPC is affected by HTTP Response Splitting vulnerability where i
|
| 16 |
CVE-2025-55276
HCL Aftermarket DPC is affected by Internal IP Disclosure vulnerability will giv
|
| 16 |
CVE-2025-55272
HCL Aftermarket DPC is affected by Banner Disclosure vulnerability where attacke
|
| 15 |
CVE-2026-31974
OpenProject is an open-source, web-based project management software. Prior to 1
|
| 15 |
CVE-2026-5382
An issue that could expose records outside of the authorized organization scope
|
| 15 |
CVE-2026-5379
An issue that allowed MCP agents to access certificate information from outside
|
| 15 |
CVE-2026-1685
A vulnerability was identified in D-Link DIR-823X 250416. This vulnerability aff
|
| 15 |
CVE-2026-33948
jq is a command-line JSON processor. Commits before 6374ae0bcdfe33a18eb0ae6db284
|
| 15 |
CVE-2026-33769
Astro is a web framework. From version 2.10.10 to before version 5.18.1, this is
|
| 15 |
CVE-2026-2711
A vulnerability has been found in zhutoutoutousan worldquant-miner up to 1.0.9.
|
| 15 |
CVE-2025-69873
ajv (Another JSON Schema Validator) before 8.18.0 is vulnerable to Regular Expre
|
| 15 |
CVE-2026-7303
A security flaw has been discovered in Xuxueli xxl-job up to 3.3.2. Impacted is
|
| 15 |
CVE-2026-7141
A vulnerability was found in vllm up to 0.19.0. The affected element is the func
|
| 15 |
CVE-2026-5360
A vulnerability has been found in Free5GC 4.2.0. The affected element is an unkn
|
| 15 |
CVE-2026-5246
A vulnerability was determined in Cesanta Mongoose up to 7.20. Affected is the f
|
| 15 |
CVE-2026-7306
A security vulnerability has been detected in Xuxueli xxl-job up to 3.3.2. The i
|
| 15 |
CVE-2026-4742
Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')
|
| 15 |
CVE-2026-2215
A vulnerability was detected in rachelos WeRSS we-mp-rss up to 1.4.8. This issue
|
| 15 |
CVE-2026-1762
A vulnerability in GE Vernova Enervista UR Setup on Windows allows File Manipula
|
| 15 |
CVE-2026-3963
A security flaw has been discovered in perfree go-fastdfs-web up to 1.3.7. This
|
| 15 |
CVE-2026-4045
A flaw has been found in projectsend up to r1945. This impacts an unknown functi
|
| 15 |
CVE-2025-15603
A security vulnerability has been detected in open-webui up to 0.6.16. Affected
|
| 15 |
CVE-2026-5622
A vulnerability was determined in hcengineering Huly Platform 0.7.382. Affected
|
| 15 |
CVE-2026-7103
A vulnerability was determined in code-projects Chat System 1.0. Affected is an
|
| 15 |
CVE-2026-7020
A security flaw has been discovered in Ollama up to 0.20.2. This affects the fun
|
| 15 |
CVE-2026-5682
A vulnerability has been found in Meesho Online Shopping App up to 27.3 on Andro
|
| 15 |
CVE-2026-23749
Golioth Firmware SDK version 0.19.1 prior to 0.22.0, fixed in commit 0e788217, c
|
| 15 |
CVE-2026-40354
Flatpak xdg-desktop-portal before 1.20.4 and 1.21.x before 1.21.1 allows any Fla
|
| 15 |
CVE-2026-32778
libexpat before 2.7.5 allows a NULL pointer dereference in the function setConte
|
| 15 |
CVE-2026-41080
libexpat before 2.7.6 uses insufficient entropy, and thus hash flooding can occu
|
| 15 |
CVE-2026-40228
In systemd 259, systemd-journald can send ANSI escape sequences to the terminals
|
| 15 |
CVE-2026-34268
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Ente
|
| 15 |
CVE-2026-22007
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Ente
|
| 15 |
CVE-2026-40947
Yubico libfido2 before 1.17.0, python-fido2 before 2.2.0, and yubikey-manager be
|
| 15 |
CVE-2025-52641
HCL AION is affected by a vulnerability where certain system behaviours may allo
|
| 15 |
CVE-2026-0121
In VPU, there is a possible use-after-free read due to a race condition. This co
|
| 14 |
CVE-2026-34781
### Impact
Apps that call `clipboard.readImage()` may be vulnerable to a denial
|
| 14 |
CVE-2026-33762
### Impact
`go-git`’s index decoder for format version 4 fails to validate the
|
| 14 |
CVE-2026-2239
A flaw was found in GIMP. Heap-buffer-overflow vulnerability exists in the fread
|
| 14 |
CVE-2026-0520
A potential vulnerability was reported in the Lenovo FileZ Android application t
|
| 14 |
CVE-2025-36194
IBM PowerVM Hypervisor FW1110.00 through FW1110.03, FW1060.00 through FW1060.51,
|
| 14 |
CVE-2025-59383
A buffer overflow vulnerability has been reported to affect Media Streaming Add-
|
| 14 |
CVE-2026-3469
A denial-of-service (DoS) vulnerability exists due to improper input validation
|
| 14 |
CVE-2026-32946
## Summary
A vulnerability exists in the Community Tier of Harden-Runner that a
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 747d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2315d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2128d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1742d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2245d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 4993d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1213d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 1015d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3770d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 917d |