CVEs in the wild

Live count of source IPs probing for each CVE on our honeypot network in the last 7 days. Numbers refresh continuously; click a row for the IPs currently trying it. KEV badge means CISA lists the CVE as actively exploited.

No CVE matches in the last 7 days.

Data window: last 7 days, refreshed every 5 minutes. JSON: /api/cves?window=1h|24h|7d.