VulnCheck

Sources: VulnCheck (homepage) · 2025 Q1 exploitation-trends report

VulnCheck is an exploit- and vulnerability-intelligence vendor. Its widely-cited data products are the VulnCheck KEV (a known-exploited-vulnerabilities catalog broader and often earlier than the CISA KEV) and NVD++ (an enriched mirror of the National Vulnerability Database).

On this wiki VulnCheck appears mainly as a measurement source for exploitation speed. Its VulnCheck KEV feed is one of the three datasets behind the Zero Day Clock (alongside CISA KEV and XDB), and its quarterly exploitation-trends reports are the first-party origin of the wiki’s Q1-2025 figure that more than a quarter of newly-exploited vulnerabilities had exploitation evidence within a day of disclosure. The wiki cites VulnCheck exploitation evidence as a prioritization input ahead of score-based triage, consistent with the company’s own finding that EPSS is a trailing indicator for emerging threats.