Most Exploitable CVEs - EPSS Rankings

CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.

164

EPSS > 50%

156

CISA KEV Listed

35,468

CVEs with EPSS

0.7%

Avg EPSS Score

All Critical High Medium Low

Rank	CVE ID	EPSS Score	Percentile	CVSS	Summary
5401	CVE-2025-9257	0.06%	18.6th	6.5	CVE-2025-9257 is an arbitrary file reading vulnerability in WebITR software developed by Uniong. Rem
5402	CVE-2025-9256	0.06%	18.6th	6.5	CVE-2025-9256 is an arbitrary file reading vulnerability in WebITR software developed by Uniong. Rem
5403	CVE-2025-55152	0.06%	18.8th	5.3	This vulnerability allows attackers to cause denial of service by sending specially crafted x-forwar
5404	CVE-2025-8582	0.06%	18.7th	4.3	This vulnerability allows attackers to spoof the URL bar (Omnibox) content in Google Chrome by trick
5405	CVE-2025-8546	0.06%	18.7th	5.3	This vulnerability allows attackers to guess CAPTCHA codes in the pybbs admin login page, potentiall
5406	CVE-2025-55191	0.06%	18.5th	6.5	This CVE describes a race condition vulnerability in Argo CD's repository credentials handler that c
5407	CVE-2025-36601	0.06%	18.8th	4.0	Dell PowerScale OneFS versions 9.5.0.0 through 9.11.0.0 contain an information disclosure vulnerabil
5408	CVE-2025-43810	0.06%	18.8th	4.3	An Insecure Direct Object Reference (IDOR) vulnerability in Liferay Portal and DXP allows authentica
5409	CVE-2025-59567	0.06%	18.8th	5.5	A missing authorization vulnerability in the Elliot Sowersby / RelyWP Coupon Affiliates WordPress pl
5410	CVE-2025-10390	0.06%	18.5th	5.4	CRMEB versions up to 5.6.1 contain an improper authorization vulnerability in the editAddress functi
5411	CVE-2025-54107	0.06%	18.8th	4.3	This vulnerability allows attackers to bypass Windows security zone restrictions by exploiting impro
5412	CVE-2025-46363	0.06%	18.8th	4.3	Dell Secure Connect Gateway (SCG) versions 5.26.00.00 through 5.30.00.00 contain a relative path tra
5413	CVE-2025-58711	0.06%	18.5th	5.3	This CVE describes a missing authorization vulnerability in the solwin Blog Designer PRO WordPress p
5414	CVE-2025-41073	0.06%	18.7th	6.5	This path traversal vulnerability in TESI Gandia Integra Total version 4.4.2236.1 allows authenticat
5415	CVE-2025-11938	0.06%	18.6th	5.6	A deserialization vulnerability in ChurchCRM's setup.php file allows remote attackers to potentially
5416	CVE-2025-62252	0.06%	18.8th	4.3	This CVE describes an Insecure Direct Object Reference (IDOR) vulnerability in Liferay Portal and DX
5417	CVE-2025-62239	0.06%	18.8th	5.4	This cross-site scripting (XSS) vulnerability in Liferay's workflow process builder allows authentic
5418	CVE-2025-35061	0.06%	18.5th	5.9	CVE-2025-35061 is an authentication relay vulnerability in Newforma Info Exchange (NIX) that allows
5419	CVE-2025-35058	0.06%	18.5th	5.9	CVE-2025-35058 is an authentication bypass vulnerability in Newforma Info Exchange (NIX) that allows
5420	CVE-2025-11436	0.06%	18.7th	6.3	This vulnerability in JhumanJ OpnForm up to version 1.9.3 allows remote attackers to upload arbitrar
5421	CVE-2025-11417	0.06%	18.6th	6.3	Campcodes Advanced Online Voting Management System 1.0 contains an unrestricted file upload vulnerab
5422	CVE-2025-11360	0.06%	18.6th	4.3	This vulnerability in jakowenko double-take allows attackers to inject malicious scripts via the X-I
5423	CVE-2025-11353	0.06%	18.6th	6.3	This vulnerability allows remote attackers to upload arbitrary files to the Online Hotel Reservation
5424	CVE-2025-11351	0.06%	18.6th	6.3	CVE-2025-11351 is an unrestricted file upload vulnerability in code-projects Online Hotel Reservatio
5425	CVE-2025-11291	0.06%	18.6th	4.3	This CVE describes a cross-site scripting (XSS) vulnerability in ixmaps website2017 that allows atta
5426	CVE-2025-33202	0.06%	18.6th	6.5	NVIDIA Triton Inference Server contains a stack overflow vulnerability where attackers can send extr
5427	CVE-2025-15082	0.06%	18.5th	5.3	This vulnerability in TOZED ZLT M30s routers allows remote attackers to disclose sensitive informati
5428	CVE-2025-15050	0.06%	18.6th	6.3	This vulnerability allows remote attackers to upload arbitrary files to the Student File Management
5429	CVE-2025-14848	0.06%	18.6th	4.3	Advantech WebAccess/SCADA is vulnerable to absolute directory traversal, allowing attackers to deter
5430	CVE-2025-14582	0.06%	18.8th	4.7	This vulnerability in campcodes Online Student Enrollment System 1.0 allows attackers to upload arbi
5431	CVE-2025-11467	0.06%	18.7th	5.8	This vulnerability allows unauthenticated attackers to perform blind server-side request forgery (SS
5432	CVE-2025-14199	0.06%	18.5th	6.3	This vulnerability allows remote attackers to upload arbitrary files to Verysync 微力同步 web ad
5433	CVE-2024-5401	0.06%	18.6th	4.3	This vulnerability allows authenticated remote users to escalate privileges without authorization in
5434	CVE-2026-0825	0.06%	18.6th	5.3	This vulnerability allows unauthenticated attackers to download all form submission data containing
5435	CVE-2025-13465	0.06%	18.5th	5.3	Lodash versions 4.0.0 through 4.17.22 contain a prototype pollution vulnerability in _.unset and _.o
5436	CVE-2025-67025	0.06%	18.7th	6.1	A Cross-Site Scripting (XSS) vulnerability in AnyComment 0.4.4 allows remote attackers to inject mal
5437	CVE-2025-67834	0.06%	18.7th	5.4	This vulnerability allows unauthenticated attackers to inject malicious scripts via the filter param
5438	CVE-2025-67833	0.06%	18.7th	6.1	CVE-2025-67833 is a cross-site scripting (XSS) vulnerability in Paessler PRTG Network Monitor that a
5439	CVE-2025-37178	0.06%	18.8th	5.3	This CVE describes multiple out-of-bounds read vulnerabilities in a system component that handles da
5440	CVE-2026-21895	0.06%	18.8th	5.3	The rsa crate versions before 0.9.10 panic when creating RSA private keys with a prime value of 1 in
5441	CVE-2026-21892	0.06%	18.6th	5.3	A SQL injection vulnerability in Parsl's visualization component allows unauthenticated attackers to
5442	CVE-2026-0668	0.06%	18.6th	5.3	This CVE describes an Inefficient Regular Expression Complexity vulnerability (Regular Expression Ex
5443	CVE-2025-66560	0.06%	18.8th	5.9	A thread exhaustion vulnerability in Quarkus REST HTTP layer causes worker threads to become permane
5444	CVE-2026-0391	0.06%	18.8th	6.5	This vulnerability allows an attacker to spoof information in Microsoft Edge for Android's user inte
5445	CVE-2025-10875	0.06%	18.7th	6.5	This vulnerability allows attackers to inject malicious code through improperly sanitized input used
5446	CVE-2025-64320	0.06%	18.7th	6.5	This vulnerability allows attackers to inject malicious code into Salesforce Agentforce Vibes Extens
5447	CVE-2026-22228	0.06%	18.6th	4.9	An authenticated high-privilege user can cause a denial-of-service condition in TP-Link Archer BE230
5448	CVE-2026-22549	0.06%	18.7th	4.9	This vulnerability in F5 BIG-IP Container Ingress Services allows excessive permissions that could e
5449	CVE-2023-37398	0.06%	18.3th	5.9	IBM Aspera Faspex versions 5.0.0 through 5.0.10 do not enforce strong password policies by default,
5450	CVE-2024-54518	0.06%	18.5th	5.3	This CVE describes an out-of-bounds memory access vulnerability in Apple's coprocessor handling that

← Previous Page 109 of 331 Next →

What is EPSS?

The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.

Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.

Prioritize by Exploit Risk

Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.

Start Monitoring Free