Most Exploitable CVEs - EPSS Rankings

CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.

164

EPSS > 50%

156

CISA KEV Listed

35,468

CVEs with EPSS

0.7%

Avg EPSS Score

All Critical High Medium Low

Rank	CVE ID	EPSS Score	Percentile	CVSS	Summary
5801	CVE-2025-21758	0.06%	17.2th	5.5	A race condition vulnerability in the Linux kernel's IPv6 multicast implementation where mld_newpack
5802	CVE-2022-49224	0.06%	17.4th	5.5	This CVE describes a memory leak vulnerability in the Linux kernel's AB8500 fuel gauge driver. When
5803	CVE-2025-20097	0.06%	17.3th	4.3	An uncaught exception vulnerability in OpenBMC firmware for specific Intel server families allows au
5804	CVE-2025-1042	0.06%	17.5th	4.9	This CVE describes an insecure direct object reference vulnerability in GitLab EE that allows attack
5805	CVE-2019-15002	0.06%	17.2th	4.3	This CVE describes a Cross-Site Request Forgery (CSRF) vulnerability in Atlassian Jira, where the lo
5806	CVE-2025-23413	0.06%	17.4th	4.4	BIG-IP Next Central Manager logs sensitive authentication information in pgaudit log files when user
5807	CVE-2025-20883	0.06%	17.3th	4.6	This vulnerability allows physical attackers to bypass access controls in Samsung's SoundPicker comp
5808	CVE-2025-26500	0.06%	17.5th	4.6	A denial-of-service vulnerability in Wind River VxWorks 7 allows attackers to crash systems by sendi
5809	CVE-2024-0640	0.06%	17.4th	4.8	A stored cross-site scripting (XSS) vulnerability in Chatwoot allows admin users to inject malicious
5810	CVE-2019-15706	0.06%	17.4th	4.1	This vulnerability allows authenticated remote attackers to inject malicious scripts into the SSL VP
5811	CVE-2024-56338	0.06%	17.3th	4.8	This cross-site scripting (XSS) vulnerability in IBM Sterling B2B Integrator allows privileged users
5812	CVE-2025-20208	0.06%	17.2th	4.6	A cross-site scripting (XSS) vulnerability in Cisco TelePresence Management Suite (TMS) web interfac
5813	CVE-2024-30115	0.06%	17.4th	6.3	This vulnerability in HCL Leap allows attackers to inject malicious scripts into web applications th
5814	CVE-2025-4118	0.06%	17.3th	5.3	This vulnerability in Weitong Mall 1.0.0 allows remote attackers to bypass access controls by manipu
5815	CVE-2025-2893	0.06%	17.3th	6.4	This stored XSS vulnerability in the Gutenverse WordPress plugin allows authenticated attackers with
5816	CVE-2025-31203	0.06%	17.5th	6.5	This CVE describes an integer overflow vulnerability in multiple Apple operating systems that could
5817	CVE-2024-30147	0.06%	17.5th	6.5	This CVE describes a cross-site scripting (XSS) vulnerability in HCL Leap that allows attackers to i
5818	CVE-2024-30113	0.06%	17.4th	6.3	This vulnerability in HCL Leap allows attackers to inject malicious scripts into web applications th
5819	CVE-2025-3458	0.06%	17.3th	6.4	The Ocean Extra WordPress plugin contains a stored cross-site scripting (XSS) vulnerability that all
5820	CVE-2025-28103	0.06%	17.5th	6.4	This vulnerability in flaskBlog v2.6.1 allows attackers to delete arbitrary user accounts without pr
5821	CVE-2025-3243	0.06%	17.5th	6.3	This critical SQL injection vulnerability in Patient Record Management System 1.0 allows remote atta
5822	CVE-2025-1138	0.06%	17.3th	4.3	IBM InfoSphere Information Server 11.7 contains an information disclosure vulnerability where authen
5823	CVE-2025-46836	0.06%	17.3th	6.6	A buffer overflow vulnerability in net-tools versions up to 2.10 allows unauthenticated local users
5824	CVE-2024-52290	0.06%	17.3th	6.3	This is a stored cross-site scripting (XSS) vulnerability in LF Edge eKuiper IoT analytics engine. U
5825	CVE-2025-4333	0.06%	17.5th	6.3	This critical vulnerability allows remote attackers to upload arbitrary files without restrictions i
5826	CVE-2024-13420	0.06%	17.3th	4.3	This vulnerability allows authenticated WordPress users with Subscriber-level access or higher to re
5827	CVE-2025-49185	0.06%	17.3th	5.5	This cross-site scripting (XSS) vulnerability allows attackers who can create dashboard widgets to i
5828	CVE-2025-30958	0.06%	17.5th	5.4	This CVE describes a missing authorization vulnerability in the onOffice for WP-Websites WordPress p
5829	CVE-2025-30636	0.06%	17.5th	5.4	This CVE describes a missing authorization vulnerability in Ability, Inc's Accessibility Suite WordP
5830	CVE-2025-29013	0.06%	17.5th	5.4	This CVE describes a Missing Authorization vulnerability in the Custom Category/Post Type Post order
5831	CVE-2025-24776	0.06%	17.5th	5.4	This CVE describes a Missing Authorization vulnerability in the Responsive Flipbooks WordPress plugi
5832	CVE-2024-40113	0.06%	17.3th	6.5	The Sitecom WLX-2006 Wall Mount Range Extender N300 v1.5 and earlier uses default administrative cre
5833	CVE-2025-53077	0.06%	17.3th	6.5	An execution after redirect vulnerability in Samsung DMS allows attackers to execute limited functio
5834	CVE-2025-46119	0.06%	17.4th	6.3	This vulnerability allows authenticated users to retrieve administrator passwords in a trivially rev
5835	CVE-2025-7885	0.06%	17.4th	4.3	This vulnerability allows attackers to inject malicious scripts into the WebSSH login page via manip
5836	CVE-2025-7477	0.06%	17.3th	4.7	This critical vulnerability in Simple Car Rental System 1.0 allows remote attackers to upload arbitr
5837	CVE-2025-52891	0.06%	17.5th	6.5	This vulnerability in ModSecurity causes a segmentation fault when processing XML requests containin
5838	CVE-2025-57220	0.06%	17.4th	5.3	An input validation flaw in the 'ate' service of Tenda AC10 routers allows unauthenticated attackers
5839	CVE-2025-57818	0.06%	17.4th	6.3	Authenticated users of Firecrawl could exploit a server-side request forgery (SSRF) vulnerability in
5840	CVE-2025-52618	0.06%	17.3th	4.3	HCL BigFix SaaS Authentication Service contains a SQL injection vulnerability that allows attackers
5841	CVE-2025-52712	0.06%	17.2th	4.2	This path traversal vulnerability in BoldGrid's Post and Page Builder WordPress plugin allows attack
5842	CVE-2025-51058	0.06%	17.4th	6.5	Bottinelli Informatical Vedo Suite 2024.17 has a Server-side Request Forgery (SSRF) vulnerability in
5843	CVE-2025-51306	0.06%	17.4th	6.5	This vulnerability in Gatling Enterprise allows users who have logged out to continue using their se
5844	CVE-2025-48499	0.06%	17.3th	5.3	An out-of-bounds write vulnerability in FUJIFILM Business Innovation MFPs allows attackers to cause
5845	CVE-2025-11125	0.06%	17.3th	4.3	This vulnerability allows attackers to inject malicious scripts into the langleyfcu Online Banking S
5846	CVE-2025-59843	0.06%	17.3th	5.3	Flag Forge CTF platform versions 2.0.0 through 2.3.1 expose user email addresses through a public AP
5847	CVE-2025-11025	0.06%	17.4th	5.3	This vulnerability in Vimesoft Corporate Messaging Platform allows attackers to retrieve embedded se
5848	CVE-2025-58668	0.06%	17.3th	4.3	This CVE describes a missing authorization vulnerability in the WPLMS WordPress theme that allows at
5849	CVE-2025-10711	0.06%	17.3th	4.3	This CVE describes a cross-site scripting (XSS) vulnerability in 07FLYCMS, 07FLY-CMS, and 07FlyCRM p
5850	CVE-2025-60319	0.06%	17.3th	6.5	PerfreeBlog v4.0.11 contains a Server-Side Request Forgery vulnerability in the uploadAttachByUrl AP

← Previous Page 117 of 331 Next →

What is EPSS?

The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.

Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.

Prioritize by Exploit Risk

Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.

Start Monitoring Free