Most Exploitable CVEs - EPSS Rankings

CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.

164

EPSS > 50%

156

CISA KEV Listed

35,468

CVEs with EPSS

0.7%

Avg EPSS Score

All Critical High Medium Low

Rank	CVE ID	EPSS Score	Percentile	CVSS	Summary
7201	CVE-2024-13169	0.15%	36th	7.8	This vulnerability allows a local authenticated attacker to perform an out-of-bounds read in Ivanti
7202	CVE-2024-13164	0.15%	36th	7.8	An uninitialized resource vulnerability in Ivanti Endpoint Manager (EPM) allows local authenticated
7203	CVE-2024-12302	0.15%	36th	6.1	The Icegram Engage WordPress plugin before version 3.1.32 has a stored cross-site scripting (XSS) vu
7204	CVE-2024-56259	0.15%	36th	6.5	This stored cross-site scripting (XSS) vulnerability in GeoDirectory WordPress plugin allows attacke
7205	CVE-2024-11955	0.15%	36.1th	4.3	This CVE describes an open redirect vulnerability in GLPI versions up to 10.0.17. Attackers can mani
7206	CVE-2024-57026	0.15%	36.1th	6.1	TawkTo Widget versions 1.3.7 and earlier contain a cross-site scripting vulnerability that allows at
7207	CVE-2025-25876	0.15%	36th	7.2	This SQL injection vulnerability in ITSourcecode Simple ChatBox allows attackers to execute arbitrar
7208	CVE-2025-1336	0.15%	36th	4.3	This path traversal vulnerability in CmsEasy 7.7.7.9 allows attackers to delete arbitrary files on t
7209	CVE-2024-13639	0.15%	36.1th	4.3	The Read More & Accordion WordPress plugin has an authorization vulnerability that allows authentica
7210	CVE-2025-30363	0.15%	36th	5.4	A stored Cross-Site Scripting (XSS) vulnerability in WeGIA web management software allows attackers
7211	CVE-2025-3246	0.15%	36th	7.6	A cross-site scripting vulnerability in GitHub Enterprise Server allows attackers to inject maliciou
7212	CVE-2023-42977	0.15%	36.1th	7.8	This CVE describes a sandbox escape vulnerability in Apple operating systems where improper path val
7213	CVE-2025-27200	0.15%	36th	7.8	Adobe Animate versions 24.0.7, 23.0.10 and earlier contain a use-after-free vulnerability that could
7214	CVE-2025-3433	0.15%	36.1th	6.1	The Advanced Advertising System WordPress plugin has an open redirect vulnerability that allows unau
7215	CVE-2025-8882	0.15%	36th	8.8	This is a use-after-free vulnerability in Chrome's Aura UI framework that could allow heap corruptio
7216	CVE-2025-53012	0.15%	36th	7.5	CVE-2025-53012 is a denial-of-service vulnerability in MaterialX library versions before 1.39.3 wher
7217	CVE-2025-36239	0.15%	36.1th	6.1	IBM Storage TS4500 Library versions 1.11.0.0 and 2.11.0.0 contain a cross-site scripting (XSS) vulne
7218	CVE-2025-57431	0.15%	36.1th	8.8	The Sound4 PULSE-ECO AES67 1.22 web management interface has a critical vulnerability that allows re
7219	CVE-2025-36248	0.15%	36.1th	6.1	IBM Copy Services Manager 6.3.13 contains a cross-site scripting (XSS) vulnerability that allows una
7220	CVE-2025-35451	0.15%	36.1th	9.8	This vulnerability affects PTZOptics and other ValueHD-based pan-tilt-zoom cameras that use hard-cod
7221	CVE-2023-53689	0.15%	36.1th	4.8	Nagios Fusion versions before 4.2.0 contain a reflected cross-site scripting vulnerability in the li
7222	CVE-2025-61960	0.15%	36.1th	7.5	A vulnerability in F5 BIG-IP APM allows undisclosed traffic to cause the Traffic Management Microker
7223	CVE-2025-12978	0.15%	36th	5.4	Fluent Bit's in_http, in_splunk, and in_elasticsearch input plugins have a tag validation flaw where
7224	CVE-2024-13997	0.15%	36.1th	7.2	This vulnerability allows authenticated Nagios XI administrators to escalate their privileges to roo
7225	CVE-2026-2218	0.15%	36th	6.3	This CVE describes a command injection vulnerability in D-Link DCS-933L IP cameras through the /setS
7226	CVE-2024-58313	0.15%	36th	7.2	xbtitFM 4.1.18 contains an insecure file upload vulnerability that allows authenticated administrato
7227	CVE-2025-59097	0.15%	36.1th	N/A	CVE-2025-59097 is an authentication bypass vulnerability in dormakaba exos 9300 Access Manager confi
7228	CVE-2025-59092	0.15%	36.1th	N/A	This vulnerability allows unauthenticated attackers to send arbitrary status information to the Kaba
7229	CVE-2025-59091	0.15%	36.1th	N/A	The Kaba exos 9300 datapoint server contains hardcoded credentials for four users, allowing unauthor
7230	CVE-2025-59090	0.15%	36.1th	N/A	This vulnerability allows unauthenticated attackers to access the SOAP API on exos 9300 servers, ena
7231	CVE-2025-0696	0.15%	35.9th	5.3	CVE-2025-0696 is a NULL pointer dereference vulnerability in Cesanta Frozen JSON parsing library ver
7232	CVE-2025-0585	0.15%	35.9th	9.8	CVE-2025-0585 is a critical SQL injection vulnerability in a+HRD software from aEnrich Technology th
7233	CVE-2024-55921	0.15%	35.9th	7.5	This CSRF vulnerability in TYPO3's backend allows attackers to trick authenticated backend users int
7234	CVE-2024-33298	0.15%	35.9th	6.1	Microweber v2.0.9 contains a cross-site scripting (XSS) vulnerability in the backup creation functio
7235	CVE-2024-46603	0.15%	35.9th	7.5	An XML External Entity (XXE) vulnerability in Elspec Engineering G5 Digital Fault Recorder firmware
7236	CVE-2024-46602	0.15%	35.9th	7.5	An XML External Entity (XXE) vulnerability in Elspec G5 digital fault recorder versions 1.2.1.12 and
7237	CVE-2025-0235	0.15%	35.9th	5.3	This vulnerability allows attackers to execute arbitrary code or cause denial of service by exploiti
7238	CVE-2025-24607	0.15%	35.9th	5.8	This CVE describes a Missing Authorization vulnerability in the IdeaPush WordPress plugin that allow
7239	CVE-2025-0896	0.15%	36th	9.8	Orthanc server versions before 1.5.8 have remote access enabled without basic authentication by defa
7240	CVE-2025-20176	0.15%	35.9th	7.7	A vulnerability in Cisco IOS and IOS XE SNMP subsystems allows authenticated remote attackers to cau
7241	CVE-2025-20173	0.15%	35.9th	7.7	A vulnerability in Cisco IOS and IOS XE SNMP subsystems allows authenticated remote attackers to cau
7242	CVE-2025-20172	0.15%	35.9th	7.7	A vulnerability in Cisco IOS, IOS XE, and IOS XR Software allows authenticated remote attackers to c
7243	CVE-2025-20171	0.15%	35.9th	7.7	A vulnerability in Cisco IOS and IOS XE SNMP subsystems allows authenticated remote attackers to cau
7244	CVE-2025-0445	0.15%	35.9th	5.4	This vulnerability is a use-after-free memory corruption flaw in Chrome's V8 JavaScript engine that
7245	CVE-2024-9107	0.15%	35.9th	5.4	A stored cross-site scripting (XSS) vulnerability in the gaizhenbiao/chuanhuchatgpt repository allow
7246	CVE-2025-1920	0.15%	36th	8.8	A type confusion vulnerability in Chrome's V8 JavaScript engine could allow attackers to execute arb
7247	CVE-2025-27515	0.15%	36th	9.8	A validation bypass vulnerability in Laravel's wildcard file validation allows attackers to upload m
7248	CVE-2024-13901	0.15%	35.9th	4.4	This vulnerability allows authenticated attackers with administrator-level access to inject maliciou
7249	CVE-2025-0618	0.15%	36th	6.5	This vulnerability allows a malicious actor to cause a persistent denial of service in FireEye EDR a
7250	CVE-2025-3474	0.15%	35.9th	6.5	This CVE describes a missing authentication vulnerability in Drupal Panels that allows attackers to

← Previous Page 145 of 710 Next →

What is EPSS?

The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.

Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.

Prioritize by Exploit Risk

Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.

Start Monitoring Free