47Critical
312High
891Medium
1,247Low
2,497Total (30d)
Recent Critical & High CVEs
| CVE ID | Severity | CVSS | Vendor / Product | Description | EPSS |
|---|---|---|---|---|---|
CVE-2025-21298 | Critical | 9.8 | Microsoft / Windows OLE | Remote code execution via crafted RTF document exploiting OLE parsing | 0.87 |
CVE-2025-0282 | Critical | 9.0 | Ivanti / Connect Secure | Stack-based buffer overflow allowing unauthenticated RCE on VPN appliances | 0.93 |
CVE-2024-55591 | High | 8.6 | Fortinet / FortiOS | Authentication bypass via Node.js websocket module targeting management interface | 0.72 |
CVE-2025-21380 | High | 8.8 | Microsoft / Azure Marketplace | Information disclosure exposing tenant secrets via API misconfiguration | 0.45 |
CVE-2025-21311 | High | 8.1 | Microsoft / Windows NTLM | Elevation of privilege through NTLM v1 downgrade attack on domain-joined systems | 0.38 |
Placeholder data. Integrate NVD API, VulnCheck, or CISA KEV for live feeds.
MITRE ATT&CK Technique Heatmap
Technique prevalence over 30 days. Darker cells = higher frequency.
None
Low
Medium
High
Critical
Recon
Resource Dev
Initial Access
Execution
Persistence
Priv Esc
Defense Evasion
Credential Access
Discovery
Lateral Movement
Collection
C2
Exfiltration
Impact