Most Exploitable CVEs - EPSS Rankings

CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.

164

EPSS > 50%

156

CISA KEV Listed

35,468

CVEs with EPSS

0.7%

Avg EPSS Score

All Critical High Medium Low

Rank	CVE ID	EPSS Score	Percentile	CVSS	Flags	Summary
651	CVE-2024-57014	3.59%	87.5th	8.8		This vulnerability allows remote attackers to execute arbitrary operating system commands on TOTOLIN
652	CVE-2023-51951	3.5%	87.3th	9.8		This SQL injection vulnerability in Stock Management System 1.0 allows remote attackers to execute a
653	CVE-2025-43851	3.49%	87.3th	9.8		This vulnerability allows remote code execution through unsafe deserialization in Retrieval-based-Vo
654	CVE-2025-43848	3.49%	87.3th	9.8		CVE-2025-43848 is an unsafe deserialization vulnerability in Retrieval-based-Voice-Conversion-WebUI
655	CVE-2025-43846	3.49%	87.3th	9.8		CVE-2025-43846 is a critical unsafe deserialization vulnerability in Retrieval-based-Voice-Conversio
656	CVE-2025-60336	3.46%	87.2th	7.5		A NULL pointer dereference vulnerability in TOTOLINK N600R routers allows attackers to crash the dev
657	CVE-2024-54763	3.45%	87.2th	6.5		An unauthenticated access control vulnerability in ipTIME A2004 routers allows attackers to retrieve
658	CVE-2025-34319	3.43%	87.2th	N/A		This CVE describes an unauthenticated OS command injection vulnerability in TOTOLINK N300RT wireless
659	CVE-2025-34221	3.41%	87.2th	9.8		This vulnerability allows unauthenticated attackers to access all internal Docker containers in Vasi
660	CVE-2026-24858	3.41%	87.2th	9.8	KEV	This authentication bypass vulnerability allows attackers with a FortiCloud account and registered d
661	CVE-2024-13789	3.39%	87.1th	9.8		The ravpage WordPress plugin is vulnerable to PHP object injection via deserialization of untrusted
662	CVE-2024-12562	3.39%	87.1th	9.8		The s2Member Pro WordPress plugin is vulnerable to PHP object injection via deserialization of untru
663	CVE-2025-24209	3.38%	87.1th	7.0		This CVE describes a buffer overflow vulnerability in Apple's web content processing components. Att
664	CVE-2024-57610	3.37%	87.1th	7.5		CVE-2024-57610 is a rate limiting vulnerability in Sylius v2.0.2 that allows attackers to perform un
665	CVE-2024-57778	3.36%	87.1th	8.8		This vulnerability in Orbe ONetView Roeador Onet-1200 allows remote attackers to escalate privileges
666	CVE-2025-27778	3.35%	87th	9.8		Applio versions 3.2.8-bugfix and prior contain an unsafe deserialization vulnerability in infer.py t
667	CVE-2025-32464	3.34%	87th	6.8		HAProxy versions 2.2 through 3.1.6 have a heap-based buffer overflow vulnerability in the sample_con
668	CVE-2025-53691	3.34%	87th	8.8		A deserialization vulnerability in Sitecore Experience Manager (XM) and Experience Platform (XP) all
669	CVE-2025-21330	3.32%	87th	7.5		This vulnerability in Windows Remote Desktop Services allows attackers to cause a denial of service
670	CVE-2025-21290	3.32%	87th	7.5		This vulnerability in Microsoft Message Queuing (MSMQ) allows attackers to cause a denial of service
671	CVE-2025-21289	3.32%	87th	7.5		This vulnerability in Microsoft Message Queuing (MSMQ) allows attackers to cause a denial of service
672	CVE-2025-21270	3.32%	87th	7.5		Microsoft Message Queuing (MSMQ) contains a denial-of-service vulnerability that allows attackers to
673	CVE-2025-21251	3.32%	87th	7.5		This vulnerability in Microsoft Message Queuing (MSMQ) allows an attacker to cause a denial of servi
674	CVE-2025-21231	3.32%	87th	7.5		This vulnerability in IP Helper allows attackers to cause a denial of service condition on affected
675	CVE-2025-21230	3.32%	87th	7.5		Microsoft Message Queuing (MSMQ) contains a vulnerability that allows attackers to cause a denial of
676	CVE-2025-21218	3.32%	87th	7.5		This Windows Kerberos vulnerability allows attackers to cause denial of service by sending specially
677	CVE-2025-21207	3.32%	87th	7.5		This vulnerability in Windows Connected Devices Platform Service (Cdpsvc) allows attackers to cause
678	CVE-2025-21300	3.32%	87th	7.5		This vulnerability in Windows Universal Plug and Play (UPnP) Device Host service allows attackers to
679	CVE-2025-44880	3.32%	87th	9.8		This CVE describes a critical command injection vulnerability in Wavlink WL-WN579A3 routers that all
680	CVE-2025-44881	3.32%	87th	9.8		This CVE describes a critical command injection vulnerability in the Wavlink WL-WN579A3 router's QoS
681	CVE-2025-47188	3.31%	87th	6.5		This CVE describes a command injection vulnerability in Mitel SIP phones that allows unauthenticated
682	CVE-2025-60694	3.29%	86.9th	7.5		A stack-based buffer overflow vulnerability in Linksys E1200 v2 routers allows remote attackers to e
683	CVE-2025-21286	3.28%	86.9th	8.8		This is a heap-based buffer overflow vulnerability in Windows Telephony Service that allows remote a
684	CVE-2025-13956	3.27%	86.9th	5.3		This vulnerability allows unauthenticated attackers to access sensitive order statistics in the Lear
685	CVE-2025-28034	3.26%	86.9th	9.8		This CVE describes a pre-authentication remote command execution vulnerability in multiple TOTOLINK
686	CVE-2025-10985	3.22%	86.7th	7.2		This CVE describes an OS command injection vulnerability in Ivanti EPMM admin panel that allows auth
687	CVE-2025-10242	3.22%	86.7th	7.2		This vulnerability allows authenticated administrators in Ivanti EPMM to execute arbitrary operating
688	CVE-2025-11005	3.22%	86.7th	9.8		This CVE describes an OS command injection vulnerability in TOTOLINK X6000R routers that allows atta
689	CVE-2024-2878	3.21%	86.7th	7.5		This vulnerability in GitLab CE/EE allows attackers to cause denial of service by crafting malicious
690	CVE-2024-13448	3.2%	86.7th	9.8		The ThemeREX Addons WordPress plugin allows unauthenticated attackers to upload arbitrary files due
691	CVE-2025-15556	3.19%	86.7th	7.5	KEV	This vulnerability allows attackers to intercept Notepad++ update traffic and replace legitimate upd
692	CVE-2024-54676	3.19%	86.7th	9.8		Apache OpenMeetings versions 2.1.0 through 7.x have insecure default clustering configurations that
693	CVE-2025-44872	3.18%	86.7th	9.8		This CVE describes a command injection vulnerability in Tenda AC9 routers that allows attackers to e
694	CVE-2025-26326	3.16%	86.6th	8.8		This vulnerability allows remote attackers to gain complete control of systems running vulnerable NV
695	CVE-2024-48445	3.15%	86.6th	9.8		A critical authentication bypass vulnerability in compop.ca ONLINE MALL v3.5.3 allows remote attacke
696	CVE-2025-30358	3.12%	86.5th	8.1		A class pollution vulnerability in Mesop Python UI framework allows attackers to overwrite global va
697	CVE-2024-56137	3.1%	86.5th	6.8		CVE-2024-56137 is a remote command execution vulnerability in MaxKB's function library module that a
698	CVE-2026-0641	3.08%	86.5th	6.3		This CVE describes a command injection vulnerability in TOTOLINK WA300 routers that allows remote at
699	CVE-2025-57636	3.08%	86.4th	6.5		This CVE describes an OS command injection vulnerability in D-Link C1 routers where an attacker can
700	CVE-2024-11465	3.07%	86.4th	7.2		The Custom Product Tabs for WooCommerce WordPress plugin is vulnerable to PHP object injection via i

← Previous Page 14 of 710 Next →

What is EPSS?

The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.

Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.

Prioritize by Exploit Risk

Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.

Start Monitoring Free