Oct 5, 2021 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Atlassian Confluence Server: public exploit or PoC linked (privilege escalation)
  • 4 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Active exploit activity

CVE-2021-26085 Atlassian Confluence Server Pre-Authorization Arbitrary File Read

  • Public exploit or PoC available
  • Exploit activity linked
  • Potential privilege escalation to admin/root

Atlassian Confluence Server privilege escalation now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Critical exposure

CVE-2021-39226 Grafana Authentication Bypass

  • CVSS 9.8
  • Authentication bypass — unauthenticated access risk

New critical Grafana Labs Grafana Auth Bypass (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2021-41773 Apache HTTP Server Path Traversal

  • CVSS 9.8

New critical Apache HTTP Server Path Traversal (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

CVE-2021-26085 Exploit

Atlassian Confluence Server Pre-Authorization Arbitrary File Read

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2021-3625 CVSS 9.6

Buffer overflow in Zephyr USB DFU DNLOAD.

CVE-2021-41553 CVSS 9.8

In ARCHIBUS Web Central 21.3.3.815 (a version from 2014), the Web Application in /archibus/login.axvw assign a session token that could b...

View critical disclosures

cvelogic Threat Intelligence