Most Exploitable CVEs - EPSS Rankings

CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.

164

EPSS > 50%

156

CISA KEV Listed

35,468

CVEs with EPSS

0.7%

Avg EPSS Score

All Critical High Medium Low

Rank	CVE ID	EPSS Score	Percentile	CVSS	Summary
851	CVE-2025-21255	0.29%	51.5th	6.6	This Windows Digital Media vulnerability allows attackers to gain elevated privileges on affected sy
852	CVE-2025-21249	0.29%	51.5th	6.6	This Windows Digital Media vulnerability allows attackers to gain elevated privileges on affected sy
853	CVE-2025-21232	0.29%	51.5th	6.6	This Windows vulnerability allows attackers to gain elevated privileges on affected systems by explo
854	CVE-2025-21229	0.29%	51.5th	6.6	This Windows Digital Media vulnerability allows attackers to gain elevated privileges on affected sy
855	CVE-2025-21227	0.29%	51.5th	6.6	This Windows Digital Media Elevation of Privilege vulnerability (CWE-125: Out-of-bounds Read) allows
856	CVE-2025-1072	0.29%	51.4th	6.5	A denial-of-service vulnerability in GitLab CE/EE allows attackers to crash the service by importing
857	CVE-2025-3060	0.29%	51.6th	6.6	This vulnerability in Drupal's Flattern theme allows attackers to execute arbitrary code on affected
858	CVE-2025-1768	0.29%	51.5th	6.5	The Squirrly SEO WordPress plugin contains a blind SQL injection vulnerability in the 'search' param
859	CVE-2025-3070	0.29%	51.5th	6.5	This vulnerability in Google Chrome extensions allows attackers to escalate privileges by tricking u
860	CVE-2025-59501	0.29%	51.6th	4.8	This vulnerability allows an authenticated attacker on an adjacent network to spoof their identity i
861	CVE-2024-48854	0.28%	51.4th	5.3	An off-by-one error in the TIFF image codec in QNX SDP versions 8.0, 7.1, and 7.0 could allow an una
862	CVE-2025-22596	0.28%	51.3th	6.5	A reflected cross-site scripting (XSS) vulnerability in WeGIA's modulos_visiveis.php endpoint allows
863	CVE-2025-32079	0.28%	51.4th	6.5	An improper input validation vulnerability in Wikimedia's GrowthExperiments MediaWiki extension allo
864	CVE-2025-31206	0.28%	51.3th	4.3	A type confusion vulnerability in Apple's Safari browser and related operating systems could cause u
865	CVE-2025-11079	0.28%	51.3th	5.3	Campcodes Farm Management System 1.0 contains an information disclosure vulnerability that allows re
866	CVE-2025-21522	0.28%	51.2th	6.5	A vulnerability in MySQL Server's parser component allows authenticated attackers with network acces
867	CVE-2025-21501	0.28%	51.2th	6.5	This vulnerability in MySQL Server's optimizer component allows authenticated attackers with low pri
868	CVE-2026-20406	0.28%	51.2th	6.5	This vulnerability allows remote denial of service attacks against devices with affected MediaTek mo
869	CVE-2025-21327	0.28%	51.1th	6.6	This Windows Digital Media vulnerability allows attackers to elevate privileges on affected systems
870	CVE-2025-21263	0.28%	51.1th	6.6	This Windows Digital Media vulnerability allows attackers to gain elevated privileges on affected sy
871	CVE-2025-31174	0.28%	51.1th	6.8	A path traversal vulnerability in the DFS module allows attackers to access files outside the intend
872	CVE-2025-3031	0.28%	51.1th	6.5	This vulnerability allows an attacker to read 32 bits of sensitive data from the stack in JIT-compil
873	CVE-2025-11491	0.28%	51.1th	6.3	This CVE describes an OS command injection vulnerability in DesktopCommanderMCP versions up to 0.2.1
874	CVE-2025-0318	0.28%	51.1th	5.3	The Ultimate Member WordPress plugin versions up to 2.9.1 leak sensitive user metadata through error
875	CVE-2024-56136	0.28%	51.1th	5.3	CVE-2024-56136 is an information disclosure vulnerability in Zulip Server that allows unauthenticate
876	CVE-2025-1063	0.28%	51.1th	5.3	The Classified Listing WordPress plugin has an information disclosure vulnerability that allows unau
877	CVE-2024-11153	0.28%	51.1th	5.3	The Content Control WordPress plugin up to version 2.5.0 allows unauthenticated attackers to access
878	CVE-2025-23108	0.28%	50.9th	4.3	This vulnerability in Firefox for iOS allows malicious JavaScript links opened via long-press to spo
879	CVE-2024-57427	0.28%	51th	6.1	PHPJabbers Cinema Booking System v2.0 contains reflected cross-site scripting vulnerabilities where
880	CVE-2024-13697	0.28%	50.9th	4.8	This vulnerability allows unauthenticated attackers to perform Server-Side Request Forgery (SSRF) at
881	CVE-2025-48204	0.28%	50.9th	6.8	This vulnerability in the ns_backup TYPO3 extension allows attackers to execute arbitrary commands o
882	CVE-2025-63401	0.28%	51th	5.5	A Cross-Site Scripting (XSS) vulnerability in HCLTech DRAGON allows remote attackers to inject malic
883	CVE-2025-1483	0.28%	50.8th	5.3	The LTL Freight Quotes – GlobalTranz Edition WordPress plugin has an authentication bypass vulnera
884	CVE-2024-13821	0.28%	50.8th	5.3	The WP Booking Calendar plugin for WordPress has a vulnerability that allows unauthenticated attacke
885	CVE-2024-13554	0.28%	50.8th	5.3	The WP Extended WordPress plugin has an authorization bypass vulnerability that allows unauthenticat
886	CVE-2025-31673	0.28%	50.8th	4.6	This CVE describes an incorrect authorization vulnerability in Drupal core that allows forceful brow
887	CVE-2025-1507	0.28%	50.8th	5.3	This vulnerability in the ShareThis Dashboard for Google Analytics WordPress plugin allows unauthent
888	CVE-2025-47268	0.28%	50.9th	6.5	A signed 64-bit integer overflow vulnerability in iputils ping allows denial of service through craf
889	CVE-2025-5514	0.28%	50.9th	5.3	A remote unauthenticated attacker can send specially crafted HTTP requests to exploit an improper le
890	CVE-2025-50157	0.28%	50.9th	5.7	This vulnerability in Windows Routing and Remote Access Service (RRAS) involves uninitialized resour
891	CVE-2025-59921	0.28%	50.9th	6.5	An authenticated attacker can access sensitive information on vulnerable FortiADC devices by sending
892	CVE-2024-54478	0.28%	50.8th	6.5	This CVE describes an out-of-bounds memory access vulnerability in Apple's web content processing co
893	CVE-2025-30221	0.28%	50.8th	4.3	Pitchfork versions before 0.11.0 are vulnerable to HTTP Response Header Injection when used with Rac
894	CVE-2025-29485	0.28%	50.7th	6.5	CVE-2025-29485 is a memory corruption vulnerability in libming v0.4.8 that causes a segmentation fau
895	CVE-2024-57835	0.28%	50.7th	5.5	This vulnerability affects Amon2::Auth::Site::LINE authentication modules that use String::Random fo
896	CVE-2025-10775	0.28%	50.8th	4.7	This CVE describes an OS command injection vulnerability in Wavlink WL-NU516U1 routers that allows r
897	CVE-2026-20422	0.28%	50.8th	6.5	This vulnerability in MediaTek modems allows remote denial of service through improper input validat
898	CVE-2026-20421	0.28%	50.8th	6.5	This vulnerability allows remote attackers to cause a system crash (denial of service) in affected m
899	CVE-2026-20420	0.28%	50.8th	6.5	This vulnerability in MediaTek modems allows remote denial of service through system crashes when de
900	CVE-2026-20405	0.28%	50.8th	6.5	This vulnerability in MediaTek modems allows remote denial of service through system crashes when de

← Previous Page 18 of 331 Next →

What is EPSS?

The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.

Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.

Prioritize by Exploit Risk

Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.

Start Monitoring Free