Home › Patch and vulnerability tracker › What's hot
Hot Patches: the hottest Microsoft patches and CVEs right now
Hot Patches is a unique list Senserva generates of the Microsoft patches (KBs) and CVEs of most interest right now, not a raw dump. It is free, refreshed several times a day, and available as a Hot Patches JSON feed to build on.
Everything here is ranked by one blended score: CISA KEV confirmed exploitation first, then known ransomware use, then FIRST.org EPSS exploit probability, then CVSS severity, with a recency boost so freshly exploited items rise to the top. When live search demand is available, that gets folded in too. Every CVE and KB also carries its created date and change history, tracked going forward and refreshed several times a day, so you can see what is new and what recently changed.
Building a tool? The same ranking is a free JSON API: https://senserva.com/api/hot.json, with four ranked lists (all CVEs, Microsoft CVEs, non-Microsoft CVEs, and patches/KBs). No login or key. See the feeds and API page for the schema and rules. Free to use with attribution: "Patch Data Provided by Senserva".
Hottest CVEs right now
The ten CVEs with the highest combined score. Click any card for the full write-up and the fix.
Hottest Microsoft patches (KBs) right now
The ten Microsoft updates carrying the most risk to deploy first.
Top 100 hottest CVEs
Sortable and filterable. Every row links to that CVE's page: what it is, who is exposed, and the update that fixes it.
Top 100 Hot Patches (Microsoft KBs)
The Microsoft updates behind the hottest CVEs, ranked to deploy in order.
Recently changed
Every CVE and Microsoft patch carries a Senserva-tracked created date and change history. These changed most recently, newest first.
The CVEs and Microsoft patches whose tracked facts (Severity, exploitation, affected products, or fixes) changed most recently, newest first. Tracked since 2026-07-07, refreshed several times a day.
- CVE-2026-53359 High changed 2026-07-08
KVM: x86: Fix shadow paging use-after-free due to unexpected role - CVE-2026-8458 Medium changed 2026-07-08
wrong reuse for different services
From "what's hot" to "what's missing on my devices"
This page shows what the whole world is dealing with. Senserva shows which of these hot CVEs and KBs are actually missing on your Microsoft 365, Intune, Defender, and Entra ID estate, then ranks your gaps the same way: actively exploited first. It reads every layer read-only and names the exact KB to deploy.
Common questions
Each CVE and KB gets a score that blends real-world threat signal and search demand. Threat signal is CISA KEV (confirmed exploited in the wild) first, then known ransomware use, then FIRST.org EPSS exploit probability, then CVSS severity, with a recency boost so newly confirmed exploitation rises. When a credentialed Search Console pull is present, live search demand (how many people are looking the item up) is blended in too.
In Motion flags an item that is actively moving right now: either it was newly added to the CISA Known Exploited Vulnerabilities catalog in the last two to three weeks, it is tied to active ransomware campaigns, or it is climbing in live search demand. It is the short list to look at first.
The underlying feeds (Microsoft MSRC, CISA KEV, FIRST.org EPSS) refresh multiple times a day, and this ranking is rebuilt with them, so a newly exploited CVE or a fresh out-of-band KB shows up here within hours.
Yes. The same ranking is a free JSON API at https://senserva.com/api/hot.json: four ranked lists (all CVEs, Microsoft CVEs, non-Microsoft CVEs, and patches/KBs), each item with its rank, score, dates, and a link to the detail page. No login or key. RSS feeds and a Patch Tuesday calendar are on the feeds and API page. Free to use with attribution: "Patch Data Provided by Senserva".
Yes, free with no sign-in. Running Senserva adds the part a public ranking cannot: which of these hot CVEs and KBs are actually missing on your own devices, ranked so you fix the right things first.