Total CVEs
16363
last 90 days
Avg Priority
36.7
of max 220
KEV
39
actively exploited
POC
3329
public exploits
Unpatched
4728
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
194
CVE-2026-24061
telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for t
185
CVE-2026-1731
BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain
184
CVE-2026-23760
SmarterTools SmarterMail versions prior to build 9511 contain an authentication bypass vulnerability
180
CVE-2025-40551
SolarWinds Web Help Desk was found to be susceptible to an untrusted data deserialization vulnerabil
170
CVE-2026-1340
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
164
CVE-2026-1281
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
160
CVE-2025-40536
SolarWinds Web Help Desk was found to be susceptible to a security control bypass vulnerability that
141
CVE-2026-20131
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM
137
CVE-2026-1603
An authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthen
134
CVE-2026-22769
Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credentia
Priority Distribution
| Priority | CVE |
|---|---|
| 32 |
CVE-2026-32010
OpenClaw versions prior to 2026.2.22 contain an allowlist bypass vulnerability i
|
| 32 |
CVE-2025-40745
A vulnerability has been identified in Siemens Software Center (All versions < V
|
| 32 |
CVE-2026-28753
NGINX Plus and NGINX Open Source have a vulnerability in the ngx_mail_smtp_modul
|
| 32 |
CVE-2026-39488
Missing Authorization vulnerability in SureCart SureCart surecart allows Exploit
|
| 32 |
CVE-2026-32451
Missing Authorization vulnerability in ThemeFusion Fusion Builder fusion-builder
|
| 32 |
CVE-2026-1898
A vulnerability was determined in WeKan up to 8.20. This affects an unknown part
|
| 32 |
CVE-2026-39651
Missing Authorization vulnerability in TotalSuite Total Poll Lite totalpoll-lite
|
| 32 |
CVE-2026-25460
Missing Authorization vulnerability in LiquidThemes Ave Core ave-core allows Exp
|
| 32 |
CVE-2026-3562
Philips Hue Bridge hk_hap Ed25519 Signature Verification Authentication Bypass V
|
| 32 |
CVE-2026-2676
A weakness has been identified in GoogTech sms-ssm up to e8534c766fd13f5f94c01da
|
| 32 |
CVE-2026-35515
### Impact
_What kind of vulnerability is it? Who is impacted?_
[`SseStream._tr
|
| 32 |
CVE-2026-28712
Local privilege escalation due to DLL hijacking vulnerability. The following pro
|
| 32 |
CVE-2026-28711
Local privilege escalation due to DLL hijacking vulnerability. The following pro
|
| 32 |
CVE-2025-62718
Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.
|
| 32 |
CVE-2026-30868
OPNsense is a FreeBSD based firewall and routing platform. Prior to 26.1.4, mult
|
| 32 |
CVE-2026-32029
OpenClaw versions prior to 2026.2.21 improperly parse the left-most X-Forwarded-
|
| 32 |
CVE-2026-32695
Traefik is an HTTP reverse proxy and load balancer. Prior to versions 3.6.11 and
|
| 32 |
CVE-2026-34218
ClearanceKit intercepts file-system access events on macOS and enforces per-proc
|
| 32 |
CVE-2025-15344
Tanium addressed a SQL injection vulnerability in Asset.
|
| 32 |
CVE-2026-2985
A security flaw has been discovered in Tiandy Video Surveillance System 视频监控平台 7
|
| 32 |
CVE-2026-1894
A vulnerability was detected in WeKan up to 8.20. This impacts an unknown functi
|
| 32 |
CVE-2026-33265
In LibreChat 0.8.1-rc2, a logged-in user obtains a JWT for both the LibreChat AP
|
| 32 |
CVE-2025-25277
in OpenHarmony v5.1.0 and prior versions allow a local attacker arbitrary code e
|
| 32 |
CVE-2026-2819
A vulnerability was identified in Dromara RuoYi-Vue-Plus up to 5.5.3. This vulne
|
| 32 |
CVE-2026-33785
A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on
|
| 32 |
CVE-2025-15541
Improper link resolution in the VX800v v1.0 SFTP service allows authenticated ad
|
| 32 |
CVE-2026-22268
Dell PowerProtect Data Manager, version(s) prior to 19.22, contain(s) an Incorre
|
| 32 |
CVE-2026-34397
Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune.
|
| 32 |
CVE-2026-24923
Permission control vulnerability in the HDC module.
Impact: Successful exploitat
|
| 32 |
CVE-2026-21790
HCL Traveler is susceptible to a weak default HTTP header validation vulnerabili
|
| 32 |
CVE-2026-34861
Race condition vulnerability in the thermal management module.
Impact: Successfu
|
| 32 |
CVE-2026-34862
Race condition vulnerability in the power consumption statistics module.
Impact:
|
| 32 |
CVE-2026-32745
In JetBrains Datalore before 2026.1 session hijacking was possible due to missin
|
| 32 |
CVE-2026-34985
LORIS (Longitudinal Online Research and Imaging System) is a self-hosted web app
|
| 32 |
CVE-2026-33145
xrdp is an open source RDP server. Versions through 0.10.5 allow an authenticate
|
| 32 |
CVE-2026-39409
## Summary
`ipRestriction()` does not canonicalize IPv4-mapped IPv6 client addr
|
| 32 |
CVE-2026-39862
Tophat is a mobile applications testing harness. Prior to 2.5.1, Tophat is affec
|
| 32 |
CVE-2026-32624
xrdp is an open source RDP server. Versions through 0.10.5 contain a heap-based
|
| 32 |
CVE-2026-5682
A vulnerability has been found in Meesho Online Shopping App up to 27.3 on Andro
|
| 32 |
CVE-2026-35165
LORIS (Longitudinal Online Research and Imaging System) is a self-hosted web app
|
| 31 |
CVE-2026-0829
The Frontend File Manager Plugin WordPress plugin through 23.5 allows unauthenti
|
| 31 |
CVE-2026-22721
VMware Aria Operations contains a privilege escalation vulnerability. A maliciou
|
| 31 |
CVE-2026-25169
Divide by zero in Microsoft Graphics Component allows an unauthorized attacker t
|
| 31 |
CVE-2026-28867
This issue was addressed with improved authentication. This issue is fixed in iO
|
| 31 |
CVE-2025-46606
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Featu
|
| 31 |
CVE-2025-46605
Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Featu
|
| 31 |
CVE-2026-26283
ImageMagick is free and open-source software used for editing and manipulating d
|
| 31 |
CVE-2026-32072
Improper authentication in Windows Active Directory allows an unauthorized attac
|
| 31 |
CVE-2026-26066
ImageMagick is free and open-source software used for editing and manipulating d
|
| 31 |
CVE-2026-25971
ImageMagick is free and open-source software used for editing and manipulating d
|
| 31 |
CVE-2026-25168
Null pointer dereference in Microsoft Graphics Component allows an unauthorized
|
| 31 |
CVE-2025-62349
Salt contains an authentication protocol version downgrade weakness that can all
|
| 31 |
CVE-2026-28822
A type confusion issue was addressed with improved memory handling. This issue i
|
| 31 |
CVE-2026-20637
A use after free issue was addressed with improved memory management. This issue
|
| 31 |
CVE-2026-40115
PraisonAI is a multi-agent teams system. Prior to 4.5.128, the WSGI-based recipe
|
| 31 |
CVE-2025-58342
An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wear
|
| 31 |
CVE-2025-58341
An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wear
|
| 31 |
CVE-2026-27846
Due to missing authentication, a user with physical access to the device can mis
|
| 31 |
CVE-2026-34385
Fleet is open source device management software. Prior to 4.81.0, a second-order
|
| 31 |
CVE-2026-1757
A flaw was identified in the interactive shell of the xmllint utility, part of t
|
| 31 |
CVE-2026-40227
In systemd 260 before 261, a local unprivileged user can trigger an assert via a
|
| 31 |
CVE-2026-29066
Tina is a headless content management system. Prior to 2.1.8, the TinaCMS CLI de
|
| 31 |
CVE-2026-28841
A buffer overflow was addressed with improved size validation. This issue is fix
|
| 31 |
CVE-2026-20699
A downgrade issue affecting Intel-based Mac computers was addressed with additio
|
| 31 |
CVE-2026-28866
This issue was addressed with improved validation of symlinks. This issue is fix
|
| 31 |
CVE-2025-66676
An issue in IObit Unlocker v1.3.0.11 allows attackers to cause a Denial of Servi
|
| 31 |
CVE-2025-62439
An Improper Verification of Source of a Communication Channel vulnerability [CWE
|
| 31 |
CVE-2026-20651
A privacy issue was addressed with improved handling of temporary files. This is
|
| 31 |
CVE-2026-20695
An information disclosure issue was addressed with improved memory management. T
|
| 31 |
CVE-2025-15622
Insufficiently Protected Credentials vulnerability in Sparx Systems Pty Ltd. Spa
|
| 31 |
CVE-2026-40117
PraisonAIAgents is a multi-agent teams system. Prior to 1.5.128, read_skill_file
|
| 31 |
CVE-2026-28889
A permissions issue was addressed with additional restrictions. This issue is fi
|
| 31 |
CVE-2025-69648
GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when
|
| 31 |
CVE-2025-61147
strukturag libde265 commit d9fea9d wa discovered to contain a segmentation fault
|
| 31 |
CVE-2026-28833
A permissions issue was addressed with additional restrictions. This issue is fi
|
| 31 |
CVE-2026-25204
Deserialization of untrusted data vulnerability in Samsung Open Source Escarogt
|
| 31 |
CVE-2026-29976
Buffer Overflow vulnerability in ZerBea hcxpcapngtool v. 7.0.1-43-g2ee308e allow
|
| 31 |
CVE-2026-3778
The application does not detect or guard against cyclic PDF object references wh
|
| 31 |
CVE-2026-30006
XnSoft NConvert 7.230 is vulnerable to Stack Buffer Overrun via a crafted .tiff
|
| 31 |
CVE-2025-69647
GNU Binutils thru 2.45.1 readelf contains a denial-of-service vulnerability when
|
| 31 |
CVE-2026-31053
A double free vulnerability exists in librz/bin/format/le/le.c in the function l
|
| 31 |
CVE-2026-29628
A stack overflow in the experimental/tinyobj_loader_opt.h file of tinyobjloader
|
| 31 |
CVE-2026-30007
XnSoft NConvert 7.230 is vulnerable to Use-After-Free via a crafted .tiff file
|
| 31 |
CVE-2026-35480
The DAG-CBOR decoder uses collection sizes declared in CBOR headers as Go preall
|
| 31 |
CVE-2026-33947
jq is a command-line JSON processor. In versions 1.8.1 and below, functions jv_s
|
| 31 |
CVE-2026-34535
iccDEV provides a set of libraries and tools for working with ICC color manageme
|
| 31 |
CVE-2026-34534
iccDEV provides a set of libraries and tools for working with ICC color manageme
|
| 31 |
CVE-2026-34536
iccDEV provides a set of libraries and tools for working with ICC color manageme
|
| 31 |
CVE-2026-34533
iccDEV provides a set of libraries and tools for working with ICC color manageme
|
| 31 |
CVE-2026-34537
iccDEV provides a set of libraries and tools for working with ICC color manageme
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 738d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2305d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2118d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1732d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2235d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 4983d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1204d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 1005d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3760d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 907d |