Aug 11, 2021 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical exposure

CVE-2021-38563 An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1.

  • CVSS 9.8

New critical Foxit Pdf Editor Out-of-Bounds Write (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2021-38568 An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.

  • CVSS 9.8

New critical Foxitsoftware Foxit Reader Memory Corruption (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2021-38574 An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.

  • CVSS 9.8

New critical Foxitsoftware Foxit Reader SQL Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2020-25563 CVSS 9.8

In SapphireIMS 5.0, it is possible to create local administrator on any client without requiring any credentials by directly accessing Re...

CVE-2020-25565 CVSS 9.8

In SapphireIMS 5.0, it is possible to use the hardcoded credential in clients (username: sapphire, password: ims) and gain access to the...

CVE-2020-25566 CVSS 9.8

In SapphireIMS 5.0, it is possible to take over an account by sending a request to the Save_Password form as shown in POC.

CVE-2021-38563 CVSS 9.8

An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1.

CVE-2021-38564 CVSS 9.1

An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1.

CVE-2021-38568 CVSS 9.8

An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.

CVE-2021-38570 CVSS 9.1

An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.

CVE-2021-38572 CVSS 9.8

An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.

CVE-2021-38573 CVSS 9.8

An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.

CVE-2021-38574 CVSS 9.8

An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.

View critical disclosures

cvelogic Threat Intelligence