Total CVEs
16363
last 90 days
Avg Priority
36.3
of max 220
KEV
40
actively exploited
POC
3235
public exploits
Unpatched
4338
CRIT/HIGH without patch
How is Priority Score calculated?
Priority Score is a composite risk metric (0-220) combining multiple real-world threat signals:
KEV +50
CISA Known Exploited Vulnerability — confirmed active exploitation in the wild
EPSS x100
Exploit Prediction Scoring System — probability of exploitation in next 30 days (0-100)
CVSS x5
Common Vulnerability Scoring System — technical severity (0-50)
POC +20
Public exploit code exists — lowers barrier for attackers
0-40 Low
40-80 Medium
80-120 High
120+ Critical
Patch Now — Known Exploited Vulnerabilities
185
CVE-2026-1731
BeyondTrust Remote Support (RS) and certain older versions of Privileged Remote Access (PRA) contain
180
CVE-2025-40551
SolarWinds Web Help Desk was found to be susceptible to an untrusted data deserialization vulnerabil
170
CVE-2026-1340
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
164
CVE-2026-1281
A code injection in Ivanti Endpoint Manager Mobile allowing attackers to achieve unauthenticated rem
160
CVE-2025-40536
SolarWinds Web Help Desk was found to be susceptible to a security control bypass vulnerability that
141
CVE-2026-20131
A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FM
137
CVE-2026-1603
An authentication bypass in Ivanti Endpoint Manager before version 2024 SU5 allows a remote unauthen
134
CVE-2026-22769
Dell RecoverPoint for Virtual Machines, versions prior to 6.0.3.1 HF1, contain a hardcoded credentia
129
CVE-2026-33825
Insufficient granularity of access control in Microsoft Defender allows an authorized attacker to el
128
CVE-2026-24423
SmarterTools SmarterMail versions prior to build 9511 contain an unauthenticated remote code executi
Priority Distribution
| Priority | CVE |
|---|---|
| 21 |
CVE-2026-35351
The mv utility in uutils coreutils fails to preserve file ownership during moves
|
| 21 |
CVE-2026-29190
Karapace is an open-source implementation of Kafka REST and Schema Registry. Pri
|
| 21 |
CVE-2026-22247
GLPI is a free asset and IT management software package. From version 11.0.0 to
|
| 21 |
CVE-2026-1230
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 1.0 b
|
| 21 |
CVE-2026-22574
A storing passwords in a recoverable format vulnerability in Fortinet FortiSOAR
|
| 21 |
CVE-2026-1163
An insufficient session expiration vulnerability exists in the latest version of
|
| 21 |
CVE-2026-32310
Cryptomator encrypts data being stored on cloud infrastructure. From version 1.6
|
| 21 |
CVE-2026-27795
LangChain is a framework for building LLM-powered applications. Prior to version
|
| 21 |
CVE-2021-35483
The Applications component of Nokia IMPACT version through 19.11.2.10-2021011804
|
| 21 |
CVE-2026-27166
Discourse is an open source discussion platform. Prior to versions 2026.3.0-late
|
| 21 |
CVE-2026-27683
SAP BusinessObjects Business Intelligence application allows an authenticated at
|
| 21 |
CVE-2026-35601
## Summary
The CalDAV output generator builds iCalendar VTODO entries via raw s
|
| 21 |
CVE-2026-33619
### Summary
PinchTab v0.8.3 contains a server-side request forgery issue in the
|
| 21 |
CVE-2025-36373
IBM DataPower Gateway 10.6CD 10.6.1.0 through 10.6.5.0 and IBM DataPower Gateway
|
| 21 |
CVE-2026-40566
FreeScout is a free self-hosted help desk and shared mailbox. Versions prior to
|
| 21 |
CVE-2026-21009
Improper check for exceptional conditions in Recents prior to SMR Apr-2026 Relea
|
| 21 |
CVE-2026-5507
When restoring a session from cache, a pointer from the serialized session data
|
| 21 |
CVE-2025-27572
Exposure of sensitive information during transient execution for some TDX within
|
| 21 |
CVE-2026-35177
Vim is an open source, command line text editor. Prior to 9.2.0280, a path trave
|
| 21 |
CVE-2025-27708
Out-of-bounds read in the firmware for some Intel(R) Converged Security and Mana
|
| 21 |
CVE-2025-27940
Out-of-bounds read for some TDX Module before version tdx1.5 within Ring 0: Hype
|
| 21 |
CVE-2025-32467
Use of uninitialized variable for some TDX Module before version tdx1.5 within R
|
| 21 |
CVE-2026-30943
## Summary
An insufficient authorization check in the file replace API allows a
|
| 21 |
CVE-2025-65924
ERPNext thru 15.88.1 does not sanitize or remove certain HTML tags specifically
|
| 21 |
CVE-2025-43883
Dell PowerScale OneFS, versions prior to 9.12.0.0, contains an improper check fo
|
| 21 |
CVE-2026-26019
LangChain is a framework for building LLM-powered applications. Prior to 1.1.14,
|
| 21 |
CVE-2026-39845
Weblate is a web based localization tool. In versions prior to 5.17, the webhook
|
| 21 |
CVE-2026-34944
Wasmtime is a runtime for WebAssembly. Prior to 24.0.7, 36.0.7, 42.0.2, and 43.0
|
| 21 |
CVE-2026-34860
Access control vulnerability in the memo module.
Impact: Successful exploitation
|
| 21 |
CVE-2026-34858
UAF vulnerability in the communication module.
Impact: Successful exploitation o
|
| 20 |
CVE-2026-31804
Tautulli is a Python based monitoring and tracking tool for Plex Media Server. P
|
| 20 |
CVE-2026-41282
ProjectDiscovery Nuclei 3 before 3.8.0 allows DSL expression injection. This aff
|
| 20 |
CVE-2026-27973
Audiobookshelf is a self-hosted audiobook and podcast server. A stored cross-sit
|
| 20 |
CVE-2026-40394
Varnish Cache 9 before 9.0.1 and Varnish Enterprise before 6.0.16r11 allows a "w
|
| 20 |
CVE-2026-40395
Varnish Enterprise before 6.0.16r12 allows a "workspace overflow" denial of serv
|
| 20 |
CVE-2026-26365
Akamai Ghost on Akamai CDN edge servers before 2026-02-06 mishandles processing
|
| 20 |
CVE-2026-33414
## Summary
A command injection vulnerability exists in Podman's HyperV machine
|
| 20 |
CVE-2026-28816
A path handling issue was addressed with improved validation. This issue is fixe
|
| 20 |
CVE-2026-20056
A vulnerability in the Dynamic Vectoring and Streaming (DVS) Engine implementati
|
| 20 |
CVE-2025-62844
A weak authentication vulnerability has been reported to affect QHora. If an att
|
| 20 |
CVE-2026-39566
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulne
|
| 20 |
CVE-2026-39572
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulne
|
| 20 |
CVE-2026-28826
A logic issue was addressed with improved restrictions. This issue is fixed in m
|
| 20 |
CVE-2026-28882
This issue was addressed with improved checks. This issue is fixed in iOS 26.4 a
|
| 20 |
CVE-2026-29795
stellar-xdr is a library and CLI containing types and functionality for working
|
| 20 |
CVE-2026-39316
OpenPrinting CUPS is an open source printing system for Linux and other Unix-lik
|
| 20 |
CVE-2025-12755
IBM MQ Operator (SC2 v3.2.0-3.8.1, LTS v2.0.0-2.0.29) and IBM‑supplied MQ Advanc
|
| 20 |
CVE-2025-61146
saitoha libsixel until v1.8.7 was discovered to contain a memory leak via the co
|
| 20 |
CVE-2026-21767
HCL BigFix Platform is affected by insufficient authentication. The application
|
| 20 |
CVE-2026-20607
A permissions issue was addressed with additional restrictions. This issue is fi
|
| 20 |
CVE-2025-9820
A flaw was found in the GnuTLS library, specifically in the gnutls_pkcs11_token_
|
| 20 |
CVE-2026-27798
ImageMagick is free and open-source software used for editing and manipulating d
|
| 20 |
CVE-2026-28688
ImageMagick is free and open-source software used for editing and manipulating d
|
| 20 |
CVE-2026-32777
libexpat before 2.7.5 allows an infinite loop while parsing DTD content.
|
| 20 |
CVE-2026-40386
In libexif through 0.6.25, an integer underflow in size checking for Fuji and Ol
|
| 20 |
CVE-2026-32776
libexpat before 2.7.5 allows a NULL pointer dereference with empty external para
|
| 20 |
CVE-2026-39314
OpenPrinting CUPS is an open source printing system for Linux and other Unix-lik
|
| 20 |
CVE-2026-0232
A problem with a protection mechanism in the Palo Alto Networks Cortex XDR agent
|
| 20 |
CVE-2026-41254
Little CMS (lcms2) through 2.18 has an integer overflow in CubeSize in cmslut.c
|
| 20 |
CVE-2026-40385
In libexif through 0.6.25, an unsigned 32bit integer overflow in Nikon MakerNote
|
| 20 |
CVE-2026-27799
ImageMagick is free and open-source software used for editing and manipulating d
|
| 20 |
CVE-2026-33535
An out-of-bounds write of a zero byte exists in the X11 `display` interaction pa
|
| 20 |
CVE-2026-40396
Varnish Cache 9 before 9.0.1 allows a "workspace overflow" denial of service (da
|
| 20 |
CVE-2026-34553
iccDEV provides a set of libraries and tools for working with ICC color manageme
|
| 20 |
CVE-2025-14684
IBM Maximo Application Suite - Monitor Component 9.1, 9.0, 8.11, and 8.10 could
|
| 20 |
CVE-2026-2625
A flaw was found in rust-rpm-sequoia. An attacker can exploit this vulnerability
|
| 20 |
CVE-2025-55717
A cleartext storage of sensitive information vulnerability [CWE-312] vulnerabili
|
| 20 |
CVE-2026-33555
An issue was discovered in HAProxy before 3.3.6. The HTTP/3 parser does not chec
|
| 20 |
CVE-2026-28550
Race condition vulnerability in the security control module. Impact: Successful
|
| 20 |
CVE-2026-28541
Permission control vulnerability in the cellular_data module. Impact: Successful
|
| 20 |
CVE-2026-28540
Out-of-bounds character read vulnerability in Bluetooth. Impact: Successful expl
|
| 20 |
CVE-2026-0024
In isRedactionNeededForOpenViaContentResolver of MediaProvider.java, there is a
|
| 20 |
CVE-2026-0108
The register protection of the PowerVR GPU is incorrectly configured. This could
|
| 20 |
CVE-2025-69418
Issue summary: When using the low-level OCB API directly with AES-NI or<br>other
|
| 20 |
CVE-2026-27576
OpenClaw is a personal AI assistant. In versions 2026.2.17 and below, the ACP br
|
| 20 |
CVE-2026-24914
Type confusion vulnerability in the camera module.
Impact: Successful exploitati
|
| 20 |
CVE-2026-41990
Libgcrypt before 1.12.2 mishandles Dilithium signing. Writes to a static array l
|
| 0 |
CVE-2026-32878
### Impact
An attacker can bypass the default request keyword denylist protecti
|
| 0 |
CVE-2026-33042
### Impact
A user can sign up without providing credentials by sending an empty
|
| 0 |
CVE-2026-32723
## Summary
Assumed repo path is `/Users/zwique/Downloads/SandboxJS-0.8.34` (no
|
| 0 |
CVE-2026-41240
There is an inconsistency between FORBID_TAGS and FORBID_ATTR handling when func
|
| 0 |
CVE-2026-39398
## Affected
openclaw-claude-bridge v1.1.0
## Issue
v1.1.0 spawns the Claude C
|
Oldest Unpatched Critical/High CVEs
| CVE | Severity | CVSS | Priority | Days Open |
|---|---|---|---|---|
| CVE-2024-3400 | CRITICAL | 10.0 | 224 | 741d |
| CVE-2019-19781 | CRITICAL | 9.8 | 223 | 2308d |
| CVE-2020-5902 | CRITICAL | 9.8 | 223 | 2121d |
| CVE-2021-35464 | CRITICAL | 9.8 | 223 | 1735d |
| CVE-2020-10189 | CRITICAL | 9.8 | 223 | 2238d |
| CVE-2012-4681 | CRITICAL | 9.8 | 223 | 4986d |
| CVE-2022-42475 | CRITICAL | 9.8 | 223 | 1207d |
| CVE-2023-3519 | CRITICAL | 9.8 | 223 | 1008d |
| CVE-2015-7450 | CRITICAL | 9.8 | 222 | 3763d |
| CVE-2023-34048 | CRITICAL | 9.8 | 222 | 910d |
Prev
80 / 80