May 10, 2021 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Microweber: public exploit or PoC linked (RCE)
  • 6 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Active exploit activity

CVE-2020-28337 Microweber RCE

  • Public exploit or PoC available
  • Exploit activity linked
  • Remote code execution exposure

Microweber RCE now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Critical exposure

CVE-2021-26583 A potential security vulnerability was identified in HPE iLO Amplifier Pack.

  • CVSS 9.8
  • Remote code execution exposure

New critical Hp Ilo Amplifier Pack RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2021-23008 F5 Big-ip Access Policy Manager

  • CVSS 9.8

New critical disclosure (CVSS 9.8) — high severity with a short public awareness window before exploit material typically surfaces.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

CVE-2020-28337 Exploit

A directory traversal issue in the Utils/Unzip module in Microweber through 1.1.20 allows an authenticated attacker to gain remote code e...

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2021-20538 CVSS 9.1

IBM Cloud Pak for Security (CP4S) 1.5.0.0 and 1.5.0.1 could allow a user to obtain sensitive information or perform actions they should n...

CVE-2021-21428 CVSS 9.3

Openapi generator is a java tool which allows generation of API client libraries (SDK generation), server stubs, documentation and config...

CVE-2021-23008 CVSS 9.8

On version 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x before 13.1.4, 12.1.x before 12.1.6, and all versions of 16.0.x and 11.6.x....

CVE-2021-25847 CVSS 9.1

Improper validation of the length field of LLDP-MED TLV in userdisk/vport_lldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows...

CVE-2021-25848 CVSS 9.1

Improper validation of the length field of LLDP-MED TLV in userdisk/vport_lldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows...

CVE-2021-26583 CVSS 9.8

A potential security vulnerability was identified in HPE iLO Amplifier Pack.

View critical disclosures

cvelogic Threat Intelligence