1118
CVEs
110
Critical
434
High
1
KEV
165
PoC
24
Unpatched C/H
95.0%
Patch Rate
0.1%
Avg EPSS
Severity Breakdown
CRITICAL
110
HIGH
434
MEDIUM
571
LOW
1
Monthly CVE Trend
Affected Products (30)
Linux Kernel
2756
Ubuntu
776
Null Pointer Dereference
595
Debian Linux
561
Memory Corruption
521
Use After Free
425
Firefox
185
Thunderbird
183
Race Condition
124
Python
122
Integer Overflow
94
Chrome
88
Node.js
76
AI / ML
73
MySQL
64
Mysql Server
62
Java
61
Imagemagick
56
Heap Overflow
55
Kubernetes
55
Freerdp
45
Windows
44
Stack Overflow
34
Deserialization
34
Command Injection
32
Enterprise Linux
32
Virtuoso
30
OpenSSL
28
macOS
25
Tls
25
Top Risky CVEs
| CVE | Summary | Severity | CVSS | EPSS | Priority | Signals |
|---|---|---|---|---|---|---|
| CVE-2026-2441 | Google Chrome's CSS engine contains a use-after-free vulnerability (CVE-2026-2441, CVSS 8.8) that allows remote attackers to execute arbitrary code within the browser sandbox through crafted HTML pages. KEV-listed with public PoC, this vulnerability enables drive-by exploitation when users visit malicious or compromised websites. | HIGH | 8.8 | 0.1% | 114 |
KEV
PoC
|
| CVE-2025-14009 | Critical code execution vulnerability in NLTK (Natural Language Toolkit) downloader component. The _unzip_iter function can be exploited to achieve arbitrary code execution through crafted downloads. CVSS 10.0, EPSS 0.57%. PoC available. | CRITICAL | 10.0 | 0.6% | 71 |
PoC
|
| CVE-2026-24054 | Sandbox escape in Kata Containers allowing guest VM to access host resources. CVSS 10.0 — undermines the core security guarantee of hardware-isolated containers. PoC and patch available. | CRITICAL | 10.0 | 0.1% | 70 |
PoC
|
| CVE-2025-68121 | Critical certificate validation bypass in Go crypto/tls during session resumption. If ClientCAs or RootCAs fields are mutated between creating the config and resuming a session, the TLS stack uses the modified trust store, potentially accepting certificates from unintended CAs. CVSS 10.0, PoC available, patch available. | CRITICAL | 10.0 | 0.0% | 70 |
PoC
|
| CVE-2025-56005 | PLY (Python Lex-Yacc) library 3.11 has an unsafe feature enabling remote code execution through pickle deserialization of cached parser tables, with EPSS 0.91%. | CRITICAL | 9.8 | 0.9% | 70 |
PoC
|
| CVE-2026-27606 | Path traversal in Rollup JavaScript module bundler before 2.80.0/3.30.0/4.59.0 allows reading arbitrary files on the build server during bundling. PoC and patch available. | CRITICAL | 9.8 | 0.6% | 70 |
PoC
|
| CVE-2026-23884 | FreeRDP prior to 3.21.0 has a use-after-free vulnerability in offscreen bitmap deletion that leaves dangling pointers, exploitable by malicious RDP servers for client-side code execution. | CRITICAL | 9.8 | 0.2% | 69 |
PoC
|
| CVE-2026-23883 | FreeRDP prior to 3.21.0 has a use-after-free vulnerability in xf_Pointer_New where cursor data is freed prematurely, allowing malicious RDP servers to execute code on clients. | CRITICAL | 9.8 | 0.2% | 69 |
PoC
|
| CVE-2026-23534 | FreeRDP prior to 3.21.0 contains a client-side heap buffer overflow in session data processing, the fifth in a series of seven critical heap overflows fixed in version 3.21.0. | CRITICAL | 9.8 | 0.1% | 69 |
PoC
|
| CVE-2026-23533 | FreeRDP prior to 3.21.0 has another client-side heap buffer overflow that can be exploited by malicious RDP servers to achieve remote code execution on connected clients. | CRITICAL | 9.8 | 0.1% | 69 |
PoC
|
| CVE-2026-23530 | FreeRDP prior to 3.21.0 has a heap buffer overflow in bitmap decompression (planar codec) that can be triggered by a malicious RDP server to execute code on the client. | CRITICAL | 9.8 | 0.1% | 69 |
PoC
|
| CVE-2026-28292 | simple-git Node.js library has a command injection vulnerability (EPSS with patch) enabling RCE when processing untrusted git operations. | CRITICAL | 9.8 | 0.1% | 69 |
PoC
|
| CVE-2026-23532 | FreeRDP prior to 3.21.0 has a client-side heap buffer overflow that can be triggered by a malicious RDP server during session data processing, enabling remote code execution. | CRITICAL | 9.8 | 0.1% | 69 |
PoC
|
| CVE-2026-23531 | FreeRDP prior to 3.21.0 has a heap buffer overflow in ClearCodec glyph data processing that allows a malicious RDP server to execute arbitrary code on connected clients. | CRITICAL | 9.8 | 0.1% | 69 |
PoC
|
| CVE-2026-27727 | JNDI injection in mchange-commons-java library allows remote code execution through crafted JNDI lookup strings. Similar to Log4Shell attack pattern. PoC and patch available. | CRITICAL | 9.8 | 0.1% | 69 |
PoC
|