Critical exposure
CVE-2021-41873 Skyworth Penguin Aurora Box Firmware
- CVSS 10
New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.
Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Three highest-priority changes — analyst brief, not a CVE dump.
Critical exposure
New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.
Critical exposure
New critical disclosure (CVSS 9.9) — high severity with a short public awareness window before exploit material typically surfaces.
Critical exposure
New critical Calibre-ebook Calibre privilege escalation (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
CISA KEV — confirmed in-the-wild exploitation.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
A flaw was found in WebSVN 2.3.2.
caml-light <= 0.75 uses mktemp() insecurely, and also does unsafe things in /tmp during make install.
Input validation issues were found in Calibre at devices/linux_mount_helper.c which can lead to argument injection and elevation of privi...
A untrusted search path issue was found in Calibre at devices/linux_mount_helper.c leading to the ability of unprivileged users to execut...
PolarSSL versions prior to v1.1 use the HAVEGE random number generation algorithm.
Crafted web server requests can be utilised to read partial stack or heap memory or may trigger a denial-of- service condition due to a c...
Online Student Admission System 1.0 is affected by an unauthenticated SQL injection bypass vulnerability in /admin/login.php.
The affected controllers do not properly sanitize the input containing code syntax.
Penguin Aurora TV Box 41502 is a high-end network HD set-top box produced by Tencent Video and Skyworth Digital.
An issue was discovered in the Dask distributed package before 2021.10.0 for Python.