Security Dashboard

7d 14d 30d 90d
Total CVEs
16585
last 90 days
Avg Priority
35.8
of max 220
KEV
35
actively exploited
POC
3156
public exploits
Unpatched
4133
CRIT/HIGH without patch
How is Priority Score calculated?

Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:

KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low 40-80 Medium 80-120 High 120+ Critical

Patch Now — Known Exploited Vulnerabilities

185
CVE-2026-1731
BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain
CRITICAL
141
CVE-2026-20131
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM
CRITICAL
137
CVE-2026-1603
An authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthen
HIGH
134
CVE-2026-22769
Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credentia
CRITICAL
129
CVE-2026-33825
Insufficient granularity of access control in Microsoft Defender allows an authorized attacker to el
HIGH
124
CVE-2026-21643
An improper neutralization of special elements used in an sql command ('sql injection') vulnerabilit
CRITICAL
124
CVE-2026-35616
A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an
CRITICAL
119
CVE-2026-39987
## Summary Marimo (19.6k stars) has a Pre-Auth RCE vulnerability. The terminal WebSocket endpoint `
CRITICAL
119
CVE-2026-3910
Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.75 allowed a remote attacker
HIGH
119
CVE-2026-3909
Out of bounds write in Skia in Google Chrome prior to 146.0.7680.75 allowed a remote attacker to per
HIGH

Priority Distribution

CRITICAL HIGH MEDIUM LOW KEV Only POC Only Unpatched CRIT/HIGH
Priority CVE
0 CVE-2026-31415
In the Linux kernel, the following vulnerability has been resolved: ipv6: avoid
0 CVE-2025-27251
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2026-31437
In the Linux kernel, the following vulnerability has been resolved: netfs: Fix
0 CVE-2026-39858
## Summary There is a high severity authentication bypass vulnerability in Trae
0 CVE-2026-31434
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix
0 CVE-2026-35051
## Summary There is a high-severity authentication bypass vulnerability in Trae
0 CVE-2025-20007
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2026-41486
# Remote Code Execution via Parquet Arrow Extension Type Deserialization ## Sum
0 CVE-2025-27573
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2026-31438
In the Linux kernel, the following vulnerability has been resolved: netfs: Fix
0 CVE-2025-20038
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2025-20066
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2025-20089
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2025-20078
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2026-31439
In the Linux kernel, the following vulnerability has been resolved: dmaengine:
0 CVE-2026-40068
Claude Code used the git worktree `commondir` file when determining folder trust
0 CVE-2026-41163
Pre-NVD disclosure via oss-security: oss-security mailing list - 2026/04/25. rce
0 CVE-2025-20098
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2025-65134
In manikandan580 School-management-system 1.0, a reflected cross-site scripting
0 CVE-2026-40912
## Summary There is a high severity authentication bypass vulnerability in Trae
0 CVE-2025-68128
Rejected reason: reserved but not needed
0 CVE-2025-68127
Rejected reason: reserved but not needed
0 CVE-2025-68126
Rejected reason: reserved but not needed
0 CVE-2025-68125
Rejected reason: reserved but not needed
0 CVE-2026-31400
In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix
0 CVE-2025-68124
Rejected reason: reserved but not needed
0 CVE-2026-31440
In the Linux kernel, the following vulnerability has been resolved: dmaengine:
0 CVE-2026-31441
In the Linux kernel, the following vulnerability has been resolved: dmaengine:
0 CVE-2026-31684
In the Linux kernel, the following vulnerability has been resolved: net: sched:
0 CVE-2026-31443
In the Linux kernel, the following vulnerability has been resolved: dmaengine:
0 CVE-2026-31399
In the Linux kernel, the following vulnerability has been resolved: nvdimm/bus:
0 CVE-2025-58184
Rejected reason: reserved but not needed
0 CVE-2026-31395
In the Linux kernel, the following vulnerability has been resolved: bnxt_en: fi
0 CVE-2026-31394
In the Linux kernel, the following vulnerability has been resolved: mac80211: f
0 CVE-2026-31391
In the Linux kernel, the following vulnerability has been resolved: crypto: atm
0 CVE-2026-31390
In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix
0 CVE-2026-23475
In the Linux kernel, the following vulnerability has been resolved: spi: fix st
0 CVE-2025-58182
Rejected reason: reserved but not needed
0 CVE-2025-47915
Rejected reason: reserved but not needed
0 CVE-2026-23474
In the Linux kernel, the following vulnerability has been resolved: mtd: Avoid
0 CVE-2026-23473
In the Linux kernel, the following vulnerability has been resolved: io_uring/po
0 CVE-2026-23472
In the Linux kernel, the following vulnerability has been resolved: serial: cor
0 CVE-2026-23471
In the Linux kernel, the following vulnerability has been resolved: drm: Fix us
0 CVE-2026-31681
In the Linux kernel, the following vulnerability has been resolved: netfilter:
0 CVE-2026-23470
In the Linux kernel, the following vulnerability has been resolved: drm/imagina
0 CVE-2026-23469
In the Linux kernel, the following vulnerability has been resolved: drm/imagina
0 CVE-2026-31466
In the Linux kernel, the following vulnerability has been resolved: mm/huge_mem
0 CVE-2026-23468
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu:
0 CVE-2024-34157
Rejected reason: reserved but not needed
0 CVE-2025-71226
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2026-23467
In the Linux kernel, the following vulnerability has been resolved: drm/i915/dm
0 CVE-2026-23465
In the Linux kernel, the following vulnerability has been resolved: btrfs: log
0 CVE-2025-27569
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2026-23464
In the Linux kernel, the following vulnerability has been resolved: soc: microc
0 CVE-2026-31677
In the Linux kernel, the following vulnerability has been resolved: crypto: af_
0 CVE-2026-23463
In the Linux kernel, the following vulnerability has been resolved: soc: fsl: q
0 CVE-2026-23460
In the Linux kernel, the following vulnerability has been resolved: net/rose: f
0 CVE-2025-71228
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2025-53517
Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none
0 CVE-2026-23454
In the Linux kernel, the following vulnerability has been resolved: net: mana:
0 CVE-2026-23452
In the Linux kernel, the following vulnerability has been resolved: PM: runtime
0 CVE-2026-23448
In the Linux kernel, the following vulnerability has been resolved: net: usb: c
0 CVE-2024-34154
Rejected reason: reserved but not needed
0 CVE-2025-36552
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2026-39398
## Affected openclaw-claude-bridge v1.1.0 ## Issue v1.1.0 spawns the Claude C
0 CVE-2025-36545
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2025-20107
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2025-36542
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2025-36538
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2025-36534
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2025-20110
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2025-22845
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2025-36532
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2025-13965
Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-
0 CVE-2026-41202
### Summary ci4ms Backup::restore extracts user uploaded ZIP archives without va
0 CVE-2026-41203
### Summary ci4ms Theme::upload extracts user uploaded ZIP archives without vali
0 CVE-2026-31534
In the Linux kernel, the following vulnerability has been resolved: smb: client
0 CVE-2025-13933
Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-
0 CVE-2025-36526
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2025-13602
Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This can
0 CVE-2025-36524
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2025-6010
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2026-34956
Pre-NVD disclosure via oss-security: oss-security mailing list - 2026/03/31. ecu
0 CVE-2026-3865
Pre-NVD disclosure via oss-security: oss-security mailing list - 2026/04/11. ion
0 CVE-2026-39816
Pre-NVD disclosure via oss-security: oss-security mailing list - 2026/04/13. g>)
0 CVE-2026-34884
Pre-NVD disclosure via oss-security: oss-security mailing list - 2026/04/13. era
0 CVE-2026-31465
In the Linux kernel, the following vulnerability has been resolved: writeback:
0 CVE-2026-4367
Pre-NVD disclosure via oss-security: oss-security mailing list - 2026/04/21. nex
0 CVE-2025-24300
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering
0 CVE-2025-24321
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering

Oldest Unpatched Critical/High CVEs

CVE Severity CVSS Priority Days Open
CVE-2024-3400 CRITICAL 10.0 224 748d
CVE-2019-19781 CRITICAL 9.8 223 2316d
CVE-2020-5902 CRITICAL 9.8 223 2128d
CVE-2021-35464 CRITICAL 9.8 223 1742d
CVE-2020-10189 CRITICAL 9.8 223 2245d
CVE-2012-4681 CRITICAL 9.8 223 4993d
CVE-2022-42475 CRITICAL 9.8 223 1214d
CVE-2023-3519 CRITICAL 9.8 223 1015d
CVE-2015-7450 CRITICAL 9.8 222 3770d
CVE-2023-34048 CRITICAL 9.8 222 917d
Prev 184 / 185 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy