Total CVEs
16288
last 90 days
Avg Priority
36.5
of max 220
KEV
37
actively exploited
POC
3553
public exploits
Unpatched
5442
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
194
CVE-2026-24061
telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for t
185
CVE-2026-1731
BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain
184
CVE-2026-23760
SmarterTools SmarterMail versions prior to build 9511 contain an authentication bypass vulnerability
180
CVE-2025-40551
SolarWinds Web Help Desk was found to be susceptible to an untrusted data deserialization vulnerabil
170
CVE-2026-1340
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
164
CVE-2026-1281
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
160
CVE-2025-40536
SolarWinds Web Help Desk was found to be susceptible to a security control bypass vulnerability that
141
CVE-2026-20131
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM
137
CVE-2026-1603
An authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthen
134
CVE-2026-22769
Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credentia
Priority Distribution
| Priority | CVE |
|---|---|
| 12 |
CVE-2026-4169
A security flaw has been discovered in Tecnick TCExam up to 16.6.0. Affected is
|
| 12 |
CVE-2026-4165
A vulnerability has been found in Worksuite HR, CRM and Project Management up to
|
| 12 |
CVE-2026-20642
An input validation issue was addressed. This issue is fixed in iOS 26.3 and iPa
|
| 12 |
CVE-2026-20989
Improper verification of cryptographic signature in Font Settings prior to SMR M
|
| 12 |
CVE-2026-3041
A security vulnerability has been detected in xingfuggz BaykeShop up to 1.3.20.
|
| 12 |
CVE-2024-54556
This issue was addressed through improved state management. This issue is fixed
|
| 12 |
CVE-2026-32735
openapi-to-java-records-mustache-templates allows users to generate Java Records
|
| 12 |
CVE-2026-25724
Claude Code is an agentic coding tool. Prior to version 2.1.7, Claude Code faile
|
| 12 |
CVE-2026-33658
### Impact
Active Storage's proxy controller does not limit the number of byte r
|
| 12 |
CVE-2026-5107
A vulnerability has been found in FRRouting FRR up to 10.5.1. This affects the f
|
| 12 |
CVE-2026-3237
In affected versions of Octopus Server it was possible for a low privileged user
|
| 12 |
CVE-2026-32019
OpenClaw versions prior to 2026.2.22 contain incomplete IPv4 special-use range v
|
| 12 |
CVE-2026-34969
# Refresh Token Leaked via URL Query Parameter in OAuth Provider Callback
## Su
|
| 12 |
CVE-2026-33644
Lychee is a free, open-source photo-management tool. Prior to version 7.5.2, the
|
| 12 |
CVE-2026-32642
Incorrect Authorization (CWE-863) vulnerability in Apache Artemis, Apache Active
|
| 12 |
CVE-2026-5199
A writer role user in an attacker-controlled namespace could signal, delete, and
|
| 12 |
CVE-2026-32943
### Impact
The password reset mechanism does not enforce single-use guarantees
|
| 12 |
CVE-2026-27524
OpenClaw versions prior to 2026.2.21 accept prototype-reserved keys in runtime /
|
| 12 |
CVE-2026-4202
The extension fails to verify, if an authenticated user has permissions to acces
|
| 12 |
CVE-2026-34506
OpenClaw before 2026.3.8 contains a sender allowlist bypass vulnerability in its
|
| 12 |
CVE-2026-34509
OpenClaw before 2026.3.8 contains a sender allowlist bypass vulnerability in its
|
| 12 |
CVE-2026-5188
An integer underflow issue exists in wolfSSL when parsing the Subject Alternativ
|
| 12 |
CVE-2026-21620
Relative Path Traversal, Improper Isolation or Compartmentalization vulnerabilit
|
| 12 |
CVE-2026-21930
Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems
|
| 12 |
CVE-2025-58381
A
vulnerability in Brocade Fabric OS before 9.2.1c2 could allow an
authenticat
|
| 12 |
CVE-2025-58380
A vulnerability in Brocade Fabric OS before 9.2.1 could allow an authenticated a
|
| 12 |
CVE-2026-28196
In JetBrains TeamCity before 2025.11.3 disabling versioned settings left a crede
|
| 12 |
CVE-2026-39957
Lychee is a free, open-source photo-management tool. Prior to 7.5.4, a SQL opera
|
| 12 |
CVE-2026-35624
OpenClaw before 2026.3.22 contains a policy confusion vulnerability in room auth
|
| 12 |
CVE-2026-35648
OpenClaw before 2026.3.22 contains a policy bypass vulnerability where queued no
|
| 12 |
CVE-2026-34764
### Impact
Apps that use offscreen rendering with GPU shared textures may be vul
|
| 12 |
CVE-2026-35617
OpenClaw before 2026.3.25 contains an authorization bypass vulnerability in Goog
|
| 12 |
CVE-2026-34720
Zammad is a web based open source helpdesk/customer support system. Prior to 7.0
|
| 12 |
CVE-2026-5187
Two potential heap out-of-bounds write locations existed in DecodeObjectId() in
|
| 12 |
CVE-2026-34988
Wasmtime is a runtime for WebAssembly. From 28.0.0 to before 36.0.7, 42.0.2, and
|
| 12 |
CVE-2026-34945
Wasmtime is a runtime for WebAssembly. From 25.0.0 to before 36.0.7, 42.0.2, and
|
| 12 |
CVE-2026-5392
Heap out-of-bounds read in PKCS7 parsing. A crafted PKCS7 message can trigger an
|
| 12 |
CVE-2026-5448
X.509 date buffer overflow in wolfSSL_X509_notAfter / wolfSSL_X509_notBefore. A
|
| 11 |
CVE-2026-22895
A cross-site scripting (XSS) vulnerability has been reported to affect QuFTP Ser
|
| 11 |
CVE-2026-0682
The Church Admin plugin for WordPress is vulnerable to Server-Side Request Forge
|
| 11 |
CVE-2026-3109
Mattermost Plugins versions <=11.4 10.11.11.0 fail to validate webhook request t
|
| 11 |
CVE-2026-33408
Discourse is an open-source discussion platform. Prior to versions 2026.3.0-late
|
| 11 |
CVE-2026-5381
An issue that could expose task information outside of the authorized organizati
|
| 11 |
CVE-2026-30888
Discourse is an open-source discussion platform. Versions prior to 2026.3.0-late
|
| 11 |
CVE-2025-52646
HCL AION is affected by a vulnerability where certain offering configurations ma
|
| 11 |
CVE-2026-0819
A stack buffer overflow vulnerability exists in wolfSSL's PKCS7 SignedData encod
|
| 11 |
CVE-2026-29110
Cryptomator encrypts data being stored on cloud infrastructure. Prior to version
|
| 11 |
CVE-2025-12697
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.5
|
| 11 |
CVE-2026-28422
Vim is an open source, command line text editor. Prior to version 9.2.0078, a st
|
| 11 |
CVE-2026-1005
Integer underflow in wolfSSL packet sniffer <= 5.8.4 allows an attacker to cause
|
| 11 |
CVE-2025-11571
Vulnerable endpoints accept user-controlled input through a URL in JSON format w
|
| 11 |
CVE-2026-34224
### Impact
An attacker who possesses a valid authentication provider token and
|
| 11 |
CVE-2026-32607
Discourse is an open-source discussion platform. From versions 2026.1.0-latest t
|
| 11 |
CVE-2026-4794
Multiple cross-site scripting (XSS) vulnerabilities in PaperCut NG/MF before 25.
|
| 11 |
CVE-2026-35200
### Impact
A file can be uploaded with a filename extension that passes the fil
|
| 11 |
CVE-2026-33624
Parse Server is an open source backend that can be deployed to any infrastructur
|
| 11 |
CVE-2026-4407
Out-of-bounds array write in Xpdf 4.06 and earlier, due to incorrect validation
|
| 11 |
CVE-2026-5476
A vulnerability was identified in NASA cFS up to 7.0.0 on 32-bit. Affected is th
|
| 11 |
CVE-2026-39349
OrangeHRM is a comprehensive human resource management (HRM) system. From 5.0 to
|
| 11 |
CVE-2025-7741
Hardcoded Password Vulnerability have been found in CENTUM. Affected products co
|
| 11 |
CVE-2026-3479
pkgutil.get_data() did not validate the resource argument as documented, allowin
|
| 11 |
CVE-2026-28527
BlueKitchen BTstack contains an out-of-bounds read vulnerability in the AVRCP Co
|
| 11 |
CVE-2026-28526
BlueKitchen BTstack contains an out-of-bounds read vulnerability in the AVRCP Co
|
| 11 |
CVE-2026-28528
BlueKitchen BTstack contains an out-of-bounds read vulnerability in the AVRCP Br
|
| 11 |
CVE-2026-27183
OpenClaw versions prior to 2026.3.7 contain a shell approval gating bypass vulne
|
| 11 |
CVE-2026-0115
In Trusted Execution Environment, there is a possible key leak due to side chann
|
| 10 |
CVE-2026-34248
Zammad is a web based open source helpdesk/customer support system. Prior to 7.0
|
| 10 |
CVE-2026-5778
Integer underflow in wolfSSL packet sniffer <= 5.9.0 allows an attacker to cause
|
| 10 |
CVE-2026-5772
A 1-byte stack buffer over-read was identified in the MatchDomainName function (
|
| 10 |
CVE-2026-23739
Asterisk is an open source private branch exchange and telephony toolkit. Prior
|
| 10 |
CVE-2025-9292
A permissive web security configuration may allow cross-origin restrictions enfo
|
| 10 |
CVE-2026-33073
Discourse is an open-source discussion platform. From versions 2026.1.0-latest t
|
| 10 |
CVE-2023-31044
An issue was discovered in Nokia Impact before Mobile 23_FP1. In Impact DM 19.11
|
| 10 |
CVE-2026-33674
### Impact
Fix improper use of validation framework
### Patches
Patched in 8.2.
|
| 10 |
CVE-2026-27949
Plane is an an open-source project management tool. Prior to 1.3.0, a vulnerabil
|
| 10 |
CVE-2026-4359
A compromised third party cloud server or man-in-the-middle attacker could send
|
| 10 |
CVE-2026-32828
Kargo manages and automates the promotion of software artifacts. In versions 1.4
|
| 10 |
CVE-2026-27467
BigBlueButton is an open-source virtual classroom. In versions 3.0.19 and below,
|
| 10 |
CVE-2026-29184
Backstage is an open framework for building developer portals. Prior to version
|
| 10 |
CVE-2026-33550
SOGo before 5.12.5 does not renew the OTP if a user disables/enables it, and has
|
| 10 |
CVE-2026-21619
Uncontrolled Resource Consumption, Deserialization of Untrusted Data vulnerabili
|
| 10 |
CVE-2026-32970
OpenClaw before 2026.3.11 contains a credential fallback vulnerability where una
|
| 10 |
CVE-2026-5473
A vulnerability has been found in NASA cFS up to 7.0.0. The impacted element is
|
| 10 |
CVE-2026-31996
OpenClaw versions prior to 2026.2.19 tools.exec.safeBins contains an input valid
|
| 10 |
CVE-2025-52645
HCL AION is affected by a vulnerability where model packaging and distribution m
|
| 9 |
CVE-2025-55250
HCL AION version 2 is affected by a Technical Error Disclosure vulnerability. Th
|
| 9 |
CVE-2025-52636
HCL AION is affected by a vulnerability related to the handling of upload size l
|
| 9 |
CVE-2025-52649
HCL AION is affected by a vulnerability where certain identifiers may be predict
|
| 9 |
CVE-2026-34743
XZ Utils provide a general-purpose data-compression library plus command-line to
|
| 9 |
CVE-2026-34073
## Summary
In versions of cryptography prior to 46.0.5, DNS name constraints we
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 730d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2298d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2111d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1725d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2228d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 4976d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1196d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 998d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3753d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 900d |