Most Exploitable CVEs - EPSS Rankings
CVEs ranked by EPSS (Exploit Prediction Scoring System) probability. Higher scores mean a greater likelihood of exploitation in the wild within the next 30 days.
164
EPSS > 50%
156
CISA KEV Listed
35,468
CVEs with EPSS
0.7%
Avg EPSS Score
| Rank | CVE ID | EPSS Score | Percentile | CVSS | Flags | Summary |
|---|---|---|---|---|---|---|
| 1351 | CVE-2025-2725 |
|
60.8th | 8.0 | A critical command injection vulnerability in H3C Magic router series allows attackers to execute ar | |
| 1352 | CVE-2025-31932 |
|
60.8th | 8.8 | A deserialization vulnerability in BizRobo! Management Console allows remote attackers to execute ar | |
| 1353 | CVE-2025-11675 |
|
60.8th | 7.2 | CVE-2025-11675 is an arbitrary file upload vulnerability in Ragic's Enterprise Cloud Database that a | |
| 1354 | CVE-2024-58279 |
|
60.8th | 8.8 | appRain CMF 4.0.5 contains an authenticated remote code execution vulnerability that allows administ | |
| 1355 | CVE-2025-0317 |
|
60.7th | 7.5 | A vulnerability in Ollama versions up to 0.3.14 allows attackers to upload malicious GGUF model file | |
| 1356 | CVE-2025-6825 |
|
60.7th | 8.8 | A critical buffer overflow vulnerability in TOTOLINK A702R routers allows remote attackers to execut | |
| 1357 | CVE-2025-6400 |
|
60.7th | 8.8 | This critical vulnerability in TOTOLINK N300RH routers allows remote attackers to execute arbitrary | |
| 1358 | CVE-2025-6399 |
|
60.7th | 8.8 | A critical buffer overflow vulnerability in TOTOLINK X15 routers allows remote attackers to execute | |
| 1359 | CVE-2025-6164 |
|
60.7th | 8.8 | A critical buffer overflow vulnerability in TOTOLINK A3002R routers allows remote attackers to execu | |
| 1360 | CVE-2025-6162 |
|
60.7th | 8.8 | A critical buffer overflow vulnerability in TOTOLINK EX1200T routers allows remote attackers to exec | |
| 1361 | CVE-2025-6149 |
|
60.7th | 8.8 | A critical buffer overflow vulnerability in TOTOLINK A3002R routers allows remote attackers to execu | |
| 1362 | CVE-2025-6147 |
|
60.7th | 8.8 | A critical buffer overflow vulnerability in TOTOLINK A702R routers allows remote attackers to execut | |
| 1363 | CVE-2025-6145 |
|
60.7th | 8.8 | This critical vulnerability in TOTOLINK EX1200T routers allows remote attackers to execute arbitrary | |
| 1364 | CVE-2025-6138 |
|
60.7th | 8.8 | A critical buffer overflow vulnerability in TOTOLINK T10 routers allows remote attackers to execute | |
| 1365 | CVE-2025-7460 |
|
60.7th | 8.8 | This critical vulnerability in TOTOLINK T6 routers allows remote attackers to execute arbitrary code | |
| 1366 | CVE-2025-6953 |
|
60.7th | 8.8 | This critical vulnerability in TOTOLINK A3002RU routers allows remote attackers to execute arbitrary | |
| 1367 | CVE-2025-67076 |
|
60.7th | 7.5 | This directory traversal vulnerability in Omnispace Agora Project allows unauthenticated attackers t | |
| 1368 | CVE-2025-4146 |
|
60.6th | 8.8 | A critical buffer overflow vulnerability in Netgear EX6200 routers allows remote attackers to execut | |
| 1369 | CVE-2025-9360 |
|
60.6th | 8.8 | A stack-based buffer overflow vulnerability in Linksys WiFi range extenders allows remote attackers | |
| 1370 | CVE-2025-2732 |
|
60.5th | 8.0 | This critical vulnerability in H3C Magic routers allows authenticated attackers on the local network | |
| 1371 | CVE-2025-2731 |
|
60.5th | 8.0 | This critical vulnerability in H3C Magic routers allows authenticated attackers on the local network | |
| 1372 | CVE-2025-2730 |
|
60.5th | 8.0 | This critical vulnerability in H3C Magic routers allows authenticated attackers on the local network | |
| 1373 | CVE-2025-2729 |
|
60.5th | 8.0 | This critical vulnerability in H3C Magic routers allows attackers within the local network to execut | |
| 1374 | CVE-2025-2728 |
|
60.5th | 8.0 | This critical vulnerability in H3C Magic NX30 Pro and Magic NX400 routers allows authenticated attac | |
| 1375 | CVE-2025-2727 |
|
60.5th | 8.0 | This critical vulnerability in H3C Magic NX30 Pro routers allows attackers on the local network to e | |
| 1376 | CVE-2025-2726 |
|
60.5th | 8.0 | This critical vulnerability in H3C Magic routers allows authenticated attackers on the local network | |
| 1377 | CVE-2023-53741 |
|
60.5th | 8.1 | Screen SFT DAB 1.9.3 has a weak session management vulnerability where attackers can bypass authenti | |
| 1378 | CVE-2025-1570 |
|
60.5th | 8.1 | This vulnerability allows unauthenticated attackers to brute-force OTP codes and reset passwords for | |
| 1379 | CVE-2025-21383 |
|
60.5th | 7.8 | This vulnerability in Microsoft Excel allows an attacker to read sensitive information from memory w | |
| 1380 | CVE-2026-22244 |
|
60.5th | 7.2 | OpenMetadata versions before 1.11.4 contain a Server-Side Template Injection vulnerability in FreeMa | |
| 1381 | CVE-2025-24120 |
|
60.4th | 7.5 | A memory management vulnerability in macOS allows attackers to cause application crashes through imp | |
| 1382 | CVE-2025-30765 |
|
60.4th | 7.6 | This SQL injection vulnerability in WPPOOL FlexStock WordPress plugin allows attackers to execute ar | |
| 1383 | CVE-2025-32203 |
|
60.4th | 7.6 | This SQL injection vulnerability in the Falling Things WordPress plugin allows attackers to execute | |
| 1384 | CVE-2025-6129 |
|
60.4th | 8.8 | A critical buffer overflow vulnerability in TOTOLINK EX1200T routers allows remote attackers to exec | |
| 1385 | CVE-2025-6043 |
|
60.4th | 8.1 | This vulnerability in the Malcure Malware Scanner WordPress plugin allows authenticated attackers wi | |
| 1386 | CVE-2025-9481 |
|
60.4th | 8.8 | A stack-based buffer overflow vulnerability in Linksys RE series range extenders allows remote attac | |
| 1387 | CVE-2025-9297 |
|
60.4th | 8.8 | This vulnerability allows remote attackers to execute arbitrary code on Tenda i22 routers by exploit | |
| 1388 | CVE-2023-47693 |
|
60.3th | 7.5 | This vulnerability allows attackers to bypass authorization controls in the Ultimate Addons for Cont | |
| 1389 | CVE-2025-30660 |
|
60.3th | 7.5 | An unauthenticated attacker can cause denial-of-service on Juniper MX Series routers by sending high | |
| 1390 | CVE-2025-30658 |
|
60.3th | 7.5 | An unauthenticated attacker can cause a denial-of-service on Juniper SRX Series firewalls by sending | |
| 1391 | CVE-2025-30656 |
|
60.3th | 7.5 | An unauthenticated network attacker can cause sustained denial-of-service on Juniper MX and SRX seri | |
| 1392 | CVE-2025-30651 |
|
60.3th | 7.5 | An unauthenticated network attacker can send a specific ICMPv6 packet to cause the routing protocol | |
| 1393 | CVE-2023-7308 |
|
60.3th | 7.5 | The SecGate3600 firewall has an authentication bypass vulnerability in its user management endpoint | |
| 1394 | CVE-2025-21594 |
|
60.3th | 7.5 | This vulnerability in Juniper Networks Junos OS on MX Series routers allows crafted IPv6 traffic to | |
| 1395 | CVE-2024-47215 |
|
60.3th | 7.5 | This vulnerability in Snowbridge setups sending data to Google Tag Manager Server Side allows attack | |
| 1396 | CVE-2024-47213 |
|
60.3th | 7.5 | A denial-of-service vulnerability in Snowplow Enrich allows attackers to crash the pipeline by sendi | |
| 1397 | CVE-2025-63916 |
|
60.3th | 8.1 | MyScreenTools v2.2.1.0 contains a critical OS command injection vulnerability in its GIF compression | |
| 1398 | CVE-2025-25652 |
|
60.2th | 7.5 | This directory traversal vulnerability in Eptura Archibus allows attackers to access files outside t | |
| 1399 | CVE-2025-4579 |
|
60.2th | 7.2 | The WP Content Security Plugin for WordPress has a stored cross-site scripting vulnerability in vers | |
| 1400 | CVE-2025-9783 |
|
60.2th | 8.8 | A buffer overflow vulnerability in TOTOLINK A702R routers allows remote attackers to execute arbitra |
What is EPSS?
The Exploit Prediction Scoring System (EPSS) is a data-driven model developed by FIRST.org that estimates the probability a CVE will be exploited in the wild within the next 30 days. Unlike CVSS which measures severity, EPSS measures likelihood of exploitation — making it ideal for prioritizing which vulnerabilities to patch first.
Why EPSS matters: With thousands of CVEs published monthly, not all vulnerabilities are equally dangerous. EPSS helps security teams focus on the CVEs most likely to be actively exploited, rather than patching solely by CVSS score. A critical CVSS 9.8 vulnerability with 0.1% EPSS may be less urgent than a high CVSS 7.5 with 90% EPSS.
Prioritize by Exploit Risk
Scan your servers and see which vulnerabilities have the highest EPSS scores. Focus on what attackers are actually targeting.
Start Monitoring Free