Jul 19, 2021 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Peel Shopping: public exploit or PoC linked (SQL Injection)
  • 9 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Active exploit activity

CVE-2020-6010 LearnPress Wordpress plugin version prior and including 3.2.6.7 is vulnerable to SQL Injection

  • Public exploit or PoC available
  • Exploit activity linked
  • Internet-facing CMS deployments affected

WordPress plugin exposure with public exploit material — mass targeting of internet-facing CMS installs is common once PoCs circulate.

Active exploit activity

CVE-2021-37593 PEEL Shopping version 9.4.0 allows remote SQL injection.

  • Public exploit or PoC available
  • Exploit activity linked

Peel Shopping SQL Injection now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Critical exposure

CVE-2020-5349 Dell Emc Powerswitch S4112f-on privilege escalation

  • CVSS 9.8
  • Potential privilege escalation to admin/root

New critical Dell Emc Powerswitch S4112f-on privilege escalation (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

CVE-2021-37593 Exploit

PEEL Shopping version 9.4.0 allows remote SQL injection.

CVE-2020-6010 Exploit

LearnPress Wordpress plugin version prior and including 3.2.6.7 is vulnerable to SQL Injection

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2020-5320 CVSS 9

Dell EMC OpenManage Enterprise (OME) versions prior to 3.2 and OpenManage Enterprise-Modular (OME-M) versions prior to 1.10.00 contain a...

CVE-2020-5322 CVSS 9.1

Dell EMC OpenManage Enterprise-Modular (OME-M) versions prior to 1.10.00 contain a command injection vulnerability.

CVE-2020-5349 CVSS 9.8

Dell EMC Networking S4100 and S5200 Series Switches manufactured prior to February 2020 contain a hardcoded credential vulnerability.

CVE-2021-20110 CVSS 9.8

Due to Manage Engine Asset Explorer Agent 1.0.34 not validating HTTPS certificates, an attacker on the network can statically configure t...

CVE-2021-33027 CVSS 9.8

Sylabs Singularity Enterprise through 1.6.2 has Insufficient Entropy in a nonce.

CVE-2021-33501 CVSS 9.6

Overwolf Client 0.169.0.22 allows XSS, with resultant Remote Code Execution, via an overwolfstore:// URL.

CVE-2021-33592 CVSS 9.8

NAVER Toolbar before 4.0.30.323 allows remote attackers to execute arbitrary code via a crafted upgrade.xml file.

CVE-2021-35963 CVSS 9.8

The specific parameter of upload function of the Orca HCM digital learning platform does not filter file format, which allows remote unau...

CVE-2021-35965 CVSS 9.8

The Orca HCM digital learning platform uses a weak factory default administrator password, which is hard-coded in the source code of the...

View critical disclosures

cvelogic Threat Intelligence