Critical exposure
CVE-2021-32835 Eclipse Keti RCE
- CVSS 9.9
- Remote code execution exposure
New critical Eclipse Keti RCE (CVSS 9.9) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Three highest-priority changes — analyst brief, not a CVE dump.
Critical exposure
New critical Eclipse Keti RCE (CVSS 9.9) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical Ppgo Jobs Project Ppgo Jobs Command Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical Apple Mac Os X privilege escalation (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
CISA KEV — confirmed in-the-wild exploitation.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
Unrestricted Upload of File with Dangerous Type in DotCMS v5.2.3 and earlier allow remote attackers to execute arbitrary code via the com...
New critical Abb Base Software exposure disclosed.
Command Injection in PPGo_Jobs v2.8.0 allows remote attackers to execute arbitrary code via the 'AjaxRun()' function.
An application may be able to execute arbitrary code with system privileges.
A logic issue was addressed with improved state management.
Multiple issues in apache were addressed by updating apache to version 2.4.46.
Eclipse Keti is a service that was designed to protect RESTfuls API using Attribute Based Access Control (ABAC).
Unrestricted File Upload in ShowDoc v2.9.5 allows remote attackers to execute arbitrary code via the 'file_url' parameter in the componen...
The Customer Photo Gallery addon before 2.9.4 for PrestaShop is vulnerable to SQL injection.
scheme/webauthn.c in Glewlwyd SSO server through 2.5.3 has a buffer overflow during FIDO2 signature validation in webauthn registration.