Dec 10, 2021 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Apache Log4j2: 2 CVEs added to CISA KEV today.
  • 7 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2021-44228 Apache Log4j2 Remote Code Execution

  • Actively exploited (CISA KEV)
  • CVSS 10
  • Listed on CISA KEV
  • Remote code execution exposure

Apache Log4j2 RCE is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Critical exposure

CVE-2021-23639 Markdown To Pdf Project Markdown To Pdf RCE

  • CVSS 9.8
  • Remote code execution exposure

New critical Markdown To Pdf Project Markdown To Pdf RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2021-27983 Remote Code Execution (RCE) vulnerability exists in MaxSite CMS v107.5 via the Documents page.

  • CVSS 9.8
  • Remote code execution exposure

New critical Max-3000 Maxsite Cms RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Sonatype Nexus Repository Manager Incorrect Access Control

Red Hat JBoss Application Server Remote Code Execution

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2021-23639 CVSS 9.8

The package md-to-pdf before 5.0.0 are vulnerable to Remote Code Execution (RCE) due to utilizing the library gray-matter to parse front...

CVE-2021-27983 CVSS 9.8

Remote Code Execution (RCE) vulnerability exists in MaxSite CMS v107.5 via the Documents page.

CVE-2021-31746 CVSS 9.8

Zip Slip vulnerability in Pluck-CMS Pluck 4.7.15 allows an attacker to upload specially crafted zip files, resulting in directory travers...

CVE-2021-35978 CVSS 9.8

An issue was discovered in Digi TransPort DR64, SR44 VC74, and WR.

CVE-2021-37934 CVSS 9.8

Due to insufficient server-side login-attempt limit enforcement, a vulnerability in /account/login in Huntflow Enterprise before 3.10.14...

CVE-2021-38917 CVSS 9.1

IBM PowerVM Hypervisor FW860, FW940, and FW950 could allow an attacker that gains service access to the FSP can read and write arbitrary...

View critical disclosures

cvelogic Threat Intelligence