One of the biggest challenges for cyber security teams is to have a good vulnerability management policy, since in real-life it is impossible to patch every vulnerability once it is discovered. In this report we point you to the CVEs that were popular among threat actors on the Dark and Deep Web during the past year. In order to identif these CVEs, e e amined 15 diâferent Deep and Dark Web forums in English, Russian, Turkish, Chinese and Spanish (more than half ere Russian-speaking forums). The research as focused on the CVE- related posts that ere published on these sources bet een Januar 01, 2020 and March 01, 2021. Of note, to a oid numerous duplicates, replies to posts ere not collected and anal ed. While orking on the åfndings’ anal sis, e reali ed that the popularit of a CVE isn’t necessaril based on the number of posts published about it. Since a post can recei e man replies and raise interest or not recei e an replies at all, the distribution of each CVE in these forums should also be taken in consideration. A ide distribution of CVE-related posts among multiple forums in diâferent languages can also be an indication for the CVE’s popularit . Introduction 2 Vulnerability Threat Intelligence Report