Most Exploitable CVEs - EPSS Rankings

CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.

164

EPSS > 50%

156

CISA KEV Listed

35,468

CVEs with EPSS

0.7%

Avg EPSS Score

All Critical High Medium Low

Rank	CVE ID	EPSS Score	Percentile	CVSS	Summary
951	CVE-2025-21187	0.61%	69.3th	7.8	This vulnerability allows remote code execution in Microsoft Power Automate through improper control
952	CVE-2025-2369	0.61%	69.2th	8.8	A critical stack-based buffer overflow vulnerability in TOTOLINK EX1800T routers allows remote attac
953	CVE-2024-12633	0.61%	69.2th	7.1	This vulnerability allows unauthenticated attackers to perform reflected cross-site scripting (XSS)
954	CVE-2025-27932	0.61%	69.2th	8.1	A path traversal vulnerability in the USB storage file-sharing function of HGW-BL1500HM devices allo
955	CVE-2025-3887	0.61%	69.1th	8.8	A stack-based buffer overflow vulnerability in GStreamer's H265 codec parser allows remote attackers
956	CVE-2025-22962	0.61%	69.1th	7.2	A critical remote code execution vulnerability in GatesAir Maxiva UAXT/VAXT transmitters allows auth
957	CVE-2025-57698	0.61%	69.1th	7.5	AstrBot Project v3.5.22 contains a directory traversal vulnerability in the plugin upload interface.
958	CVE-2025-34335	0.6%	69.1th	8.8	This CVE describes an authenticated command injection vulnerability in AudioCodes Fax Server and Aut
959	CVE-2024-57519	0.6%	69th	7.5	A denial-of-service vulnerability in Open5GS v2.7.2 allows remote attackers to crash the service via
960	CVE-2025-28221	0.6%	69th	7.5	This vulnerability allows remote attackers to crash the web server on Tenda W6_S routers by sending
961	CVE-2025-24035	0.6%	69th	8.1	This vulnerability in Windows Remote Desktop Services allows unauthorized attackers to execute arbit
962	CVE-2025-63371	0.6%	69th	7.5	OneCommander 3.102.0.0 contains a directory traversal vulnerability in its ZIP file processing compo
963	CVE-2024-57649	0.6%	69th	7.5	This vulnerability in OpenLink Virtuoso's qst_vec_set component allows attackers to execute crafted
964	CVE-2024-57647	0.6%	69th	7.5	A SQL injection vulnerability in the row_insert_cast component of OpenLink Virtuoso OpenSource allow
965	CVE-2024-57646	0.6%	69th	7.5	This SQL injection vulnerability in OpenLink Virtuoso's psiginfo component allows attackers to execu
966	CVE-2024-57645	0.6%	69th	7.5	This vulnerability in OpenLink Virtuoso OpenSource allows attackers to execute crafted SQL statement
967	CVE-2024-57644	0.6%	69th	7.5	This vulnerability in OpenLink Virtuoso Open-Source allows attackers to execute crafted SQL statemen
968	CVE-2024-57641	0.6%	69th	7.5	This vulnerability in OpenLink Virtuoso OpenSource allows attackers to execute crafted SQL statement
969	CVE-2024-57640	0.6%	69th	7.5	A SQL injection vulnerability in the dc_add_int component of OpenLink Virtuoso OpenSource allows att
970	CVE-2024-57639	0.6%	69th	7.5	This SQL injection vulnerability in OpenLink Virtuoso's dc_elt_size component allows attackers to ex
971	CVE-2025-26628	0.6%	69th	7.3	CVE-2025-26628 is an information disclosure vulnerability in Azure Local Cluster where credentials a
972	CVE-2023-53888	0.6%	69th	8.8	CVE-2023-53888 is a remote code execution vulnerability in Zomplog 3.9 that allows authenticated att
973	CVE-2024-56889	0.6%	68.9th	7.5	This vulnerability allows unauthorized attackers to delete complaints in CodeAstro Complaint Managem
974	CVE-2025-14106	0.6%	68.9th	8.8	This vulnerability allows remote attackers to execute arbitrary commands on ZSPACE Q2C NAS devices b
975	CVE-2024-13533	0.6%	68.9th	7.5	This vulnerability allows unauthenticated attackers to perform SQL injection attacks on WordPress si
976	CVE-2024-13532	0.6%	68.9th	7.5	This SQL injection vulnerability in the Small Package Quotes – Purolator Edition WordPress plugin
977	CVE-2025-4800	0.6%	68.8th	8.8	The MasterStudy LMS Pro WordPress plugin allows authenticated users with Subscriber-level access or
978	CVE-2025-34311	0.6%	68.8th	8.8	This CVE describes a command injection vulnerability in IPFire firewall software that allows authent
979	CVE-2025-1510	0.59%	68.8th	7.3	This vulnerability allows unauthenticated attackers to execute arbitrary WordPress shortcodes throug
980	CVE-2025-1509	0.59%	68.8th	7.3	The Show Me The Cookies WordPress plugin allows unauthenticated attackers to execute arbitrary short
981	CVE-2025-27091	0.59%	68.8th	7.5	A heap overflow vulnerability in OpenH264 video codec library allows remote attackers to crash appli
982	CVE-2025-28395	0.59%	68.8th	7.1	A buffer overflow vulnerability exists in D-LINK DI-8100 routers in the ipsec_road_asp function via
983	CVE-2025-34284	0.59%	68.8th	8.8	Nagios XI versions before 2024R2 contain an authenticated command injection vulnerability in the Win
984	CVE-2024-14005	0.59%	68.8th	8.8	Nagios XI versions before 2024R1.2 contain a command injection vulnerability in the Docker Wizard. A
985	CVE-2025-3300	0.59%	68.7th	7.2	The WPMasterToolKit WordPress plugin contains a directory traversal vulnerability that allows authen
986	CVE-2025-2262	0.59%	68.7th	7.3	This vulnerability allows unauthenticated attackers to execute arbitrary WordPress shortcodes throug
987	CVE-2025-5621	0.59%	68.7th	7.3	This critical vulnerability in D-Link DIR-816 routers allows remote attackers to execute arbitrary o
988	CVE-2025-10494	0.59%	68.7th	8.1	This vulnerability allows authenticated WordPress users with Subscriber-level access or higher to de
989	CVE-2024-51376	0.59%	68.6th	7.5	A directory traversal vulnerability in yeqifu carRental v1.0 allows remote attackers to access sensi
990	CVE-2025-53948	0.59%	68.6th	7.5	CVE-2025-53948 is a denial-of-service vulnerability in Sante PACS Server where a remote attacker can
991	CVE-2025-22469	0.59%	68.6th	7.3	This CVE describes an OS command injection vulnerability in Sato CL4/6NX Plus and CL4/6NX-J Plus lab
992	CVE-2023-42232	0.59%	68.6th	7.5	This directory traversal vulnerability in Pat Infinite Solutions HelpdeskAdvanced allows attackers t
993	CVE-2023-42227	0.59%	68.6th	7.5	This vulnerability allows attackers to perform directory traversal attacks through the WSCView/Save
994	CVE-2023-42226	0.59%	68.6th	7.5	This vulnerability allows attackers to perform directory traversal attacks through the Email/SaveAtt
995	CVE-2023-42225	0.59%	68.6th	7.5	This directory traversal vulnerability in Pat Infinite Solutions HelpdeskAdvanced allows attackers t
996	CVE-2025-7846	0.59%	68.6th	8.8	The WordPress User Extra Fields plugin has an arbitrary file deletion vulnerability in all versions
997	CVE-2025-25206	0.59%	68.5th	8.3	This SQL injection vulnerability in eLabFTW allows authenticated users to read sensitive database in
998	CVE-2024-56282	0.58%	68.5th	7.5	This vulnerability allows attackers to include local files on the server through improper filename c
999	CVE-2024-56281	0.58%	68.5th	7.5	This vulnerability allows attackers to include local files on the server through improper filename c
1000	CVE-2025-24039	0.58%	68.5th	7.3	This CVE describes an elevation of privilege vulnerability in Visual Studio Code where an attacker c

← Previous Page 20 of 265 Next →

What is EPSS?

The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.

Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.

Prioritize by Exploit Risk

Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.

Start Monitoring Free