Most Exploitable CVEs - EPSS Rankings

CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.

164

EPSS > 50%

156

CISA KEV Listed

35,468

CVEs with EPSS

0.7%

Avg EPSS Score

All Critical High Medium Low

Rank	CVE ID	EPSS Score	Percentile	CVSS	Flags	Summary
701	CVE-2025-32444	3.07%	86.4th	10.0		This vulnerability allows remote code execution on vLLM instances using mooncake integration via ins
702	CVE-2025-66644	3.06%	86.4th	7.2	KEV	This CVE describes a command injection vulnerability in Array Networks ArrayOS AG VPN appliances. At
703	CVE-2025-41228	3.05%	86.4th	4.3		VMware ESXi and vCenter Server have a reflected cross-site scripting vulnerability in certain login
704	CVE-2025-6543	3.05%	86.4th	9.8	KEV	A critical memory overflow vulnerability in NetScaler ADC and NetScaler Gateway allows attackers to
705	CVE-2025-27364	3.04%	86.4th	10.0		This CVE describes a critical Remote Code Execution vulnerability in MITRE Caldera's agent compilati
706	CVE-2025-45890	3.04%	86.4th	9.8		A directory traversal vulnerability in novel plus allows remote attackers to read, write, or execute
707	CVE-2025-29039	3.04%	86.4th	7.2		This vulnerability allows remote attackers to execute arbitrary code on D-Link DIR-832x routers via
708	CVE-2024-37358	3.04%	86.4th	8.6		Apache James email servers are vulnerable to denial of service attacks where attackers can abuse IMA
709	CVE-2013-3307	3.04%	86.4th	8.3		This vulnerability allows remote attackers to execute arbitrary operating system commands on affecte
710	CVE-2025-45491	3.01%	86.3th	9.8		This CVE describes a command injection vulnerability in Linksys E5600 routers via the DynDNS usernam
711	CVE-2025-12101	3%	86.3th	N/A		This Cross-Site Scripting (XSS) vulnerability in NetScaler ADC and NetScaler Gateway allows attacker
712	CVE-2025-21297	3%	86.3th	8.1		This vulnerability allows remote attackers to execute arbitrary code on Windows systems with Remote
713	CVE-2025-21295	3%	86.3th	8.1		This vulnerability allows remote attackers to execute arbitrary code on affected systems by exploiti
714	CVE-2024-7034	2.99%	86.2th	7.2		CVE-2024-7034 allows attackers to write arbitrary files on systems running vulnerable open-webui ver
715	CVE-2024-52012	2.98%	86.2th	5.4		This CVE describes a relative path traversal vulnerability (zipslip) in Apache Solr's configset uplo
716	CVE-2025-22352	2.94%	86.1th	7.6		This SQL injection vulnerability in the ELEX WooCommerce Advanced Bulk Edit plugin allows attackers
717	CVE-2025-2941	2.94%	86.1th	9.8		This vulnerability allows unauthenticated attackers to move arbitrary files on WordPress servers run
718	CVE-2024-12088	2.94%	86.1th	6.5		A path traversal vulnerability in rsync's --safe-links option allows attackers to write files outsid
719	CVE-2025-21415	2.92%	86.1th	9.9		This critical vulnerability in Azure AI Face Service allows attackers to bypass authentication mecha
720	CVE-2024-7595	2.9%	86th	6.5		This vulnerability allows attackers to spoof GRE/GRE6 protocol packets by bypassing source validatio
721	CVE-2024-11170	2.88%	86th	8.8		A path traversal vulnerability in danny-avila/librechat allows attackers to write files to arbitrary
722	CVE-2025-2328	2.88%	86th	8.8		This vulnerability allows unauthenticated attackers to delete arbitrary files on WordPress servers u
723	CVE-2025-21613	2.86%	85.9th	9.8		An argument injection vulnerability in go-git versions before 5.13.0 allows attackers to set arbitra
724	CVE-2024-48245	2.85%	85.9th	7.2		Vehicle Management System 1.0 contains SQL injection vulnerabilities in POST parameters that allow g
725	CVE-2025-29046	2.85%	85.9th	9.8		A buffer overflow vulnerability in ALFA WiFi CampPro router firmware allows remote attackers to exec
726	CVE-2025-29044	2.85%	85.9th	9.8		A buffer overflow vulnerability in Netgear R61 router firmware allows remote attackers to execute ar
727	CVE-2025-7643	2.81%	85.8th	9.1		The Attachment Manager WordPress plugin has an arbitrary file deletion vulnerability that allows una
728	CVE-2025-7712	2.81%	85.8th	9.1		The Madara - Core WordPress plugin has an arbitrary file deletion vulnerability that allows unauthen
729	CVE-2025-4255	2.8%	85.8th	7.3		A critical buffer overflow vulnerability in PCMan FTP Server 2.0.7 allows remote attackers to execut
730	CVE-2025-34223	2.8%	85.8th	9.8		This vulnerability allows unauthenticated remote attackers to take over administrative control of Va
731	CVE-2024-13824	2.79%	85.8th	9.8		CVE-2024-13824 is a PHP object injection vulnerability in the CiyaShop WordPress theme that allows u
732	CVE-2025-21396	2.79%	85.8th	8.2		This vulnerability allows unauthorized attackers to elevate privileges in Microsoft Account systems
733	CVE-2025-41243	2.78%	85.7th	10.0		CVE-2025-41243 allows attackers to modify Spring Environment properties through unsecured Spring Boo
734	CVE-2025-6065	2.77%	85.7th	9.1		The Image Resizer On The Fly WordPress plugin contains an arbitrary file deletion vulnerability that
735	CVE-2024-36295	2.74%	85.7th	9.1		This vulnerability allows authenticated attackers to execute arbitrary commands on Wavlink AC3000 ro
736	CVE-2024-21797	2.74%	85.7th	9.1		This vulnerability allows authenticated attackers to execute arbitrary commands on Wavlink AC3000 ro
737	CVE-2025-21590	2.74%	85.7th	4.4	KEV	A local privilege escalation vulnerability in Juniper Junos OS kernel allows attackers with shell ac
738	CVE-2025-34329	2.73%	85.6th	9.8		AudioCodes Fax Server and Auto-Attendant IVR appliances up to version 2.6.23 expose an unauthenticat
739	CVE-2025-26817	2.73%	85.6th	9.8		CVE-2025-26817 is an OS command injection vulnerability in Netwrix Password Secure 9.2.0.32454 that
740	CVE-2025-66516	2.73%	85.6th	8.4		This critical XXE vulnerability in Apache Tika allows attackers to perform XML External Entity injec
741	CVE-2025-47161	2.72%	85.6th	7.8		CVE-2025-47161 is an improper access control vulnerability in Microsoft Defender for Endpoint that a
742	CVE-2021-41691	2.71%	85.6th	9.8		This SQL injection vulnerability in OS4Ed OpenSIS allows attackers to execute arbitrary SQL commands
743	CVE-2025-25293	2.7%	85.6th	7.5		This vulnerability in ruby-saml allows remote attackers to cause Denial of Service (DoS) by sending
744	CVE-2024-13359	2.7%	85.6th	8.1		The Product Input Fields for WooCommerce WordPress plugin has an arbitrary file upload vulnerability
745	CVE-2025-47917	2.7%	85.5th	8.9		Mbed TLS versions before 3.6.4 contain a use-after-free vulnerability in the mbedtls_x509_string_to_
746	CVE-2025-55763	2.69%	85.5th	7.5		A buffer overflow vulnerability in CivetWeb's URI parser allows remote attackers to execute arbitrar
747	CVE-2025-54769	2.68%	85.5th	8.8		This vulnerability allows authenticated read-only users to upload files and perform directory traver
748	CVE-2024-8021	2.68%	85.5th	6.1		An open redirect vulnerability in gradio-app/gradio allows attackers to redirect users to malicious
749	CVE-2025-27472	2.63%	85.4th	5.4		This vulnerability allows attackers to bypass Windows Mark of the Web (MOTW) security protections ov
750	CVE-2024-42922	2.63%	85.4th	6.5		AAPanel v7.0.7 contains an OS command injection vulnerability (CWE-78) that allows attackers to exec

← Previous Page 15 of 710 Next →

What is EPSS?

The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.

Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.

Prioritize by Exploit Risk

Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.

Start Monitoring Free