← All weakness types
Deserialization of Untrusted Data
CWE-5022,865 vulnerabilities are classified as Deserialization of Untrusted Data (CWE-502). The most exploitable are shown first (by EPSS), each with its CVSS score, exploit-prediction, CISA KEV status, and available fix.
| CVE | Severity | CVSS | EPSS | Exploited | Fix |
|---|---|---|---|---|---|
| CVE-2023-0669 | High | 7.2 | 100% | KEV + Ransom | Fix |
| CVE-2021-44228 | Critical | 10.0 | 100% | KEV + Ransom | Fix |
| CVE-2021-35464 | Critical | 9.8 | 100% | KEV + Ransom | Fix |
| CVE-2023-29300 | Critical | 9.8 | 100% | KEV + Ransom | - |
| CVE-2025-53770 | Critical | 9.8 | 100% | KEV + Ransom | Fix |
| CVE-2022-47986 | Critical | 9.8 | 100% | KEV + Ransom | - |
| CVE-2022-41082 | High | 8.0 | 100% | KEV + Ransom | Fix |
| CVE-2025-59287 | Critical | 9.8 | 100% | KEV | Fix |
| CVE-2025-24813 | Critical | 9.8 | 100% | KEV | Fix |
| CVE-2020-10189 | Critical | 9.8 | 100% | KEV | Fix |
| CVE-2022-35405 | Critical | 9.8 | 100% | KEV | Fix |
| CVE-2023-21839 | High | 7.5 | 100% | KEV | - |
| CVE-2020-7961 | Critical | 9.8 | 100% | KEV | Fix |
| CVE-2019-18935 | Critical | 9.8 | 100% | KEV + Ransom | - |
| CVE-2017-1000353 | Critical | 9.8 | 100% | KEV | - |
| CVE-2023-46604 | Critical | 10.0 | 100% | KEV + Ransom | Fix |
| CVE-2023-27372 | Critical | 9.8 | 100% | - | Fix |
| CVE-2022-1471 | High | 8.3 | 100% | - | Fix |
| CVE-2025-10035 | Critical | 10.0 | 100% | KEV + Ransom | Fix |
| CVE-2025-55182 | Critical | 10.0 | 100% | KEV + Ransom | Fix |
| CVE-2017-9805 | High | 8.1 | 99% | KEV | Fix |
| CVE-2018-2628 | Critical | 9.8 | 99% | KEV | - |
| CVE-2021-42237 | Critical | 9.8 | 99% | KEV + Ransom | - |
| CVE-2020-0618 | High | 8.8 | 99% | KEV | - |
| CVE-2020-9496 | Medium | 6.1 | 99% | - | - |
| CVE-2018-19276 | Critical | 9.8 | 99% | - | Fix |
| CVE-2021-39144 | High | 8.5 | 99% | KEV | Fix |
| CVE-2018-1000861 | Critical | 9.8 | 98% | KEV | - |
| CVE-2021-26295 | Critical | 9.8 | 98% | - | Fix |
| CVE-2015-7450 | Critical | 9.8 | 98% | KEV | - |
| CVE-2020-2555 | Critical | 9.8 | 97% | KEV | - |
| CVE-2023-38203 | Critical | 9.8 | 97% | KEV + Ransom | - |
| CVE-2015-4852 | Critical | 9.8 | 96% | KEV | Fix |
| CVE-2019-10068 | Critical | 9.8 | 96% | KEV | Fix |
| CVE-2023-25194 | High | 8.8 | 95% | - | - |
| CVE-2019-10173 | Critical | 9.8 | 95% | - | Fix |
| CVE-2021-31474 | Critical | 9.8 | 94% | - | Fix |
| CVE-2018-3245 | Critical | 9.8 | 94% | - | - |
| CVE-2021-27850 | Critical | 9.8 | 94% | - | Fix |
| CVE-2021-26857 | High | 7.8 | 94% | KEV + Ransom | Fix |
| CVE-2025-24016 | Critical | 9.9 | 93% | KEV | Fix |
| CVE-2019-6340 | High | 8.1 | 92% | KEV | Fix |
| CVE-2024-0692 | High | 8.8 | 92% | - | Fix |
| CVE-2017-12149 | Critical | 9.8 | 91% | KEV + Ransom | - |
| CVE-2017-3066 | Critical | 9.8 | 91% | KEV | - |
| CVE-2023-40044 | Critical | 10.0 | 90% | KEV + Ransom | Fix |
| CVE-2025-49113 | Critical | 9.9 | 89% | KEV | Fix |
| CVE-2025-5086 | Critical | 9.0 | 89% | KEV | - |
| CVE-2017-5645 | Critical | 9.8 | 89% | - | Fix |
| CVE-2021-23758 | High | 8.1 | 89% | - | Fix |
| CVE-2025-26399 | Critical | 9.8 | 88% | KEV | - |
| CVE-2024-40711 | Critical | 9.8 | 88% | KEV + Ransom | Fix |
| CVE-2020-27131 | High | 8.1 | 88% | - | - |
| CVE-2018-15381 | Critical | 9.8 | 87% | - | Fix |
| CVE-2015-8103 | Critical | 9.8 | 87% | - | Fix |
| CVE-2020-10915 | Critical | 9.8 | 87% | - | - |
| CVE-2023-36035 | High | 8.0 | 87% | - | Fix |
| CVE-2022-38111 | High | 7.2 | 85% | - | - |
| CVE-2024-28986 | Critical | 9.8 | 85% | KEV | - |
| CVE-2022-36974 | Critical | 9.8 | 84% | - | Fix |
| CVE-2025-40551 | Critical | 9.8 | 84% | KEV | Fix |
| CVE-2024-30044 | High | 7.2 | 84% | - | Fix |
| CVE-2019-9874 | Critical | 9.8 | 84% | KEV | - |
| CVE-2019-7214 | Critical | 9.8 | 83% | - | Fix |
| CVE-2015-7501 | Critical | 9.8 | 83% | - | Fix |
| CVE-2022-36958 | High | 8.8 | 83% | - | Fix |
| CVE-2023-43208 | Critical | 9.8 | 83% | KEV + Ransom | Fix |
| CVE-2023-20888 | High | 8.8 | 82% | - | - |
| CVE-2021-21351 | Medium | 5.4 | 82% | - | Fix |
| CVE-2023-21707 | High | 8.8 | 82% | - | Fix |
| CVE-2023-32031 | High | 8.8 | 82% | - | Fix |
| CVE-2023-36744 | High | 8.0 | 82% | - | Fix |
| CVE-2021-42125 | High | 8.8 | 82% | - | Fix |
| CVE-2024-23478 | High | 8.0 | 82% | - | Fix |
| CVE-2021-35216 | High | 8.9 | 81% | - | Fix |
| CVE-2024-2054 | Critical | 9.8 | 81% | - | - |
| CVE-2023-36777 | Medium | 5.7 | 81% | - | Fix |
| CVE-2020-27868 | Critical | 9.8 | 81% | - | - |
| CVE-2021-4104 | High | 7.5 | 81% | - | Fix |
| CVE-2023-36745 | High | 8.0 | 81% | - | Fix |
| CVE-2021-30128 | Critical | 9.8 | 81% | - | Fix |
| CVE-2023-23836 | High | 7.2 | 80% | - | - |
| CVE-2023-44353 | Critical | 9.8 | 80% | - | Fix |
| CVE-2017-12557 | Critical | 9.8 | 80% | - | - |
| CVE-2019-4279 | Critical | 9.8 | 80% | - | - |
| CVE-2020-15148 | High | 8.9 | 79% | - | Fix |
| CVE-2019-11945 | Critical | 9.8 | 79% | - | Fix |
| CVE-2024-28075 | Critical | 9.0 | 78% | - | Fix |
| CVE-2021-21341 | High | 7.5 | 78% | - | Fix |
| CVE-2021-29505 | High | 7.5 | 78% | - | Fix |
| CVE-2021-26914 | High | 8.1 | 78% | - | Fix |
| CVE-2019-0192 | Critical | 9.8 | 78% | - | - |
| CVE-2018-15133 | High | 8.1 | 77% | KEV | - |
| CVE-2021-35218 | High | 8.9 | 76% | - | Fix |
| CVE-2021-21346 | Medium | 6.1 | 76% | - | Fix |
| CVE-2021-21344 | Medium | 5.3 | 76% | - | Fix |
| CVE-2021-3007 | Critical | 9.8 | 75% | - | Fix |
| CVE-2023-36756 | High | 8.0 | 75% | - | Fix |
| CVE-2024-5932 | Critical | 10.0 | 74% | - | Fix |
| CVE-2021-21242 | Critical | 10.0 | 74% | - | Fix |
Showing the top 100 of 2,865. Browse all 2,865 in the lookup tool.