Most Exploitable CVEs - EPSS Rankings
CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.
164
EPSS > 50%
156
CISA KEV Listed
35,468
CVEs with EPSS
0.7%
Avg EPSS Score
| Rank | CVE ID | EPSS Score | Percentile | CVSS | Flags | Summary |
|---|---|---|---|---|---|---|
| 5351 | CVE-2025-62224 |
|
19.1th | 5.5 | This vulnerability in Microsoft Edge for Android allows an attacker to spoof user interface elements | |
| 5352 | CVE-2025-69226 |
|
18.9th | 5.3 | This vulnerability in AIOHTTP allows attackers to determine the existence of absolute path component | |
| 5353 | CVE-2026-1682 |
|
19.1th | 5.3 | A null pointer dereference vulnerability in Free5GC SMF's PFCP UDP endpoint allows remote attackers | |
| 5354 | CVE-2024-26317 |
|
18.8th | 6.1 | This vulnerability is an elliptic curve cryptography implementation flaw in illumos that causes inco | |
| 5355 | CVE-2024-22349 |
|
18.5th | 4.0 | This vulnerability in IBM DevOps Velocity and UrbanCode Velocity allows local web pages to be stored | |
| 5356 | CVE-2024-57160 |
|
18.5th | 4.3 | CVE-2024-57160 is a Cross-Site Request Forgery vulnerability in 07FLYCMS that allows attackers to tr | |
| 5357 | CVE-2025-21795 |
|
18.6th | 5.5 | A denial-of-service vulnerability in the Linux kernel's NFS server (nfsd) causes a 15-minute hang wh | |
| 5358 | CVE-2025-21787 |
|
18.6th | 5.5 | A Linux kernel vulnerability in the team networking driver allows uninitialized memory disclosure wh | |
| 5359 | CVE-2025-21765 |
|
18.6th | 5.5 | A race condition vulnerability in the Linux kernel's IPv6 implementation where ip6_default_advmss() | |
| 5360 | CVE-2025-21728 |
|
18.6th | 5.5 | A Linux kernel vulnerability where BPF programs running in non-preemptible contexts can cause system | |
| 5361 | CVE-2024-57981 |
|
18.6th | 5.5 | A NULL pointer dereference vulnerability in the Linux kernel's xHCI USB driver can cause kernel cras | |
| 5362 | CVE-2024-13830 |
|
18.8th | 6.1 | This reflected cross-site scripting (XSS) vulnerability in Ivanti Connect Secure and Policy Secure a | |
| 5363 | CVE-2024-54853 |
|
18.7th | 5.4 | A stored cross-site scripting (XSS) vulnerability in Skybox Change Manager allows authenticated atta | |
| 5364 | CVE-2025-22672 |
|
18.6th | 4.9 | This Server-Side Request Forgery (SSRF) vulnerability in the SuitePlugins Video & Photo Gallery for | |
| 5365 | CVE-2024-11441 |
|
18.7th | 6.1 | A stored XSS vulnerability in Serge version 0.9.0 allows attackers to inject malicious JavaScript in | |
| 5366 | CVE-2024-54559 |
|
18.8th | 5.5 | This CVE describes a macOS vulnerability where applications could bypass security checks and access | |
| 5367 | CVE-2025-25621 |
|
18.8th | 4.3 | Unifiedtransform 2.0 has an incorrect access control vulnerability that allows teachers to take atte | |
| 5368 | CVE-2025-21826 |
|
18.6th | 5.5 | A vulnerability in the Linux kernel's netfilter nf_tables subsystem allows mismatched key length cal | |
| 5369 | CVE-2024-58063 |
|
18.6th | 5.5 | This CVE describes a memory leak and invalid memory access vulnerability in the Linux kernel's rtlwi | |
| 5370 | CVE-2024-55064 |
|
18.7th | 5.4 | Multiple cross-site scripting (XSS) vulnerabilities in EasyVirt DC NetScope allow remote attackers t | |
| 5371 | CVE-2025-4006 |
|
18.6th | 4.7 | This critical vulnerability in BeyongCms 1.6.0 allows remote attackers to upload arbitrary files wit | |
| 5372 | CVE-2025-43918 |
|
18.6th | 6.4 | This vulnerability allows attackers to obtain trusted TLS certificates for domains they don't contro | |
| 5373 | CVE-2025-48473 |
|
18.7th | 4.3 | This vulnerability in FreeScout allows authenticated users to view messages from conversations they | |
| 5374 | CVE-2025-48388 |
|
18.7th | 6.5 | FreeScout help desk software prior to version 1.8.178 has an input validation vulnerability where sp | |
| 5375 | CVE-2025-5065 |
|
18.6th | 6.5 | This vulnerability in Google Chrome's FileSystemAccess API allows attackers to create deceptive user | |
| 5376 | CVE-2025-30173 |
|
18.7th | 6.7 | This CVE describes a file upload vulnerability in ABB's ASPECT, NEXUS, and MATRIX series products th | |
| 5377 | CVE-2025-30169 |
|
18.7th | 6.7 | This vulnerability allows attackers to upload and execute malicious PHP scripts in ASPECT systems if | |
| 5378 | CVE-2025-25539 |
|
18.7th | 6.5 | A Local File Inclusion vulnerability in Vasco v3.14 and earlier allows remote attackers to read sens | |
| 5379 | CVE-2025-4887 |
|
18.8th | 4.3 | This CSRF vulnerability in SourceCodester Online Student Clearance System 1.0 allows attackers to tr | |
| 5380 | CVE-2025-26841 |
|
18.6th | 6.1 | A Cross-Site Scripting (XSS) vulnerability in Everest Forms WordPress plugin before version 3.0.9 al | |
| 5381 | CVE-2025-3597 |
|
18.6th | 5.9 | The Firelight Lightbox WordPress plugin before version 2.3.15 allows users with post writing capabil | |
| 5382 | CVE-2025-4282 |
|
18.8th | 4.3 | This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in the SourceCodester/oretnom23 | |
| 5383 | CVE-2025-5859 |
|
18.6th | 6.3 | This critical SQL injection vulnerability in PHPGurukul Nipah Virus Testing Management System 1.0 al | |
| 5384 | CVE-2025-5669 |
|
18.6th | 6.3 | This critical SQL injection vulnerability in PHPGurukul Medical Card Generation System 1.0 allows at | |
| 5385 | CVE-2025-5659 |
|
18.6th | 6.3 | This critical SQL injection vulnerability in PHPGurukul Complaint Management System 2.0 allows attac | |
| 5386 | CVE-2025-5652 |
|
18.6th | 6.3 | This critical vulnerability in PHPGurukul Complaint Management System 2.0 allows remote attackers to | |
| 5387 | CVE-2025-5618 |
|
18.6th | 6.3 | This critical SQL injection vulnerability in PHPGurukul Online Fire Reporting System 1.2 allows atta | |
| 5388 | CVE-2025-5616 |
|
18.6th | 6.3 | This critical SQL injection vulnerability in PHPGurukul Online Fire Reporting System 1.2 allows atta | |
| 5389 | CVE-2025-5612 |
|
18.6th | 6.3 | This critical SQL injection vulnerability in PHPGurukul Online Fire Reporting System 1.2 allows atta | |
| 5390 | CVE-2025-5582 |
|
18.6th | 6.3 | CVE-2025-5582 is a critical SQL injection vulnerability in CodeAstro Real Estate Management System 1 | |
| 5391 | CVE-2025-7108 |
|
18.6th | 5.4 | This critical path traversal vulnerability in risesoft-y9 Digital-Infrastructure allows attackers to | |
| 5392 | CVE-2025-4956 |
|
18.5th | 4.3 | A path traversal vulnerability in the AA-Team Pro Bulk Watermark WordPress plugin allows attackers t | |
| 5393 | CVE-2025-33038 |
|
18.7th | 6.5 | A path traversal vulnerability in Qsync Central allows authenticated remote attackers to read arbitr | |
| 5394 | CVE-2025-33036 |
|
18.7th | 6.5 | A path traversal vulnerability in Qsync Central allows authenticated remote attackers to read arbitr | |
| 5395 | CVE-2025-30270 |
|
18.7th | 6.5 | A path traversal vulnerability in QNAP operating systems allows authenticated attackers to read arbi | |
| 5396 | CVE-2024-12923 |
|
18.6th | 5.4 | A stored cross-site scripting (XSS) vulnerability in QNAP Photo Station allows authenticated attacke | |
| 5397 | CVE-2025-58058 |
|
18.8th | 5.3 | This vulnerability in the xz Go package allows attackers to prepend arbitrary data before LZMA-encod | |
| 5398 | CVE-2021-4459 |
|
18.7th | 6.5 | CVE-2021-4459 is a path traversal vulnerability in Sunny Boy devices that allows authorized remote a | |
| 5399 | CVE-2025-9259 |
|
18.6th | 6.5 | CVE-2025-9259 is an arbitrary file reading vulnerability in WebITR software developed by Uniong. Rem | |
| 5400 | CVE-2025-9258 |
|
18.6th | 6.5 | CVE-2025-9258 is an arbitrary file reading vulnerability in WebITR software developed by Uniong. Rem |
What is EPSS?
The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.
Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.
Prioritize by Exploit Risk
Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.
Start Monitoring Free