Dec 20, 2021 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Wbce Cms: public exploit or PoC linked (SQL injection)
  • 7 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Active exploit activity

CVE-2021-3817 wbce_cms is vulnerable to Improper Neutralization of Special Elements used in an SQL Command

  • Public exploit or PoC available
  • Exploit activity linked

Wbce Cms SQL injection now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Critical exposure

CVE-2021-43439 RCE in Add Review Function in iResturant 1.0 Allows remote attacker to execute commands remotely

  • CVSS 9.8
  • Remote code execution exposure

New critical Iresturant Project Iresturant RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2021-44675 Zohocorp Manageengine Servicedesk Plus Msp RCE

  • CVSS 9.8
  • Remote code execution exposure

New critical Zohocorp Manageengine Servicedesk Plus Msp RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

CVE-2021-3817 Exploit

wbce_cms is vulnerable to Improper Neutralization of Special Elements used in an SQL Command

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2020-8105 CVSS 9.6

OS Command Injection vulnerability in the wirelessConnect handler of Abode iota All-In-One Security Kit allows an attacker to inject comm...

CVE-2021-43439 CVSS 9.8

RCE in Add Review Function in iResturant 1.0 Allows remote attacker to execute commands remotely

CVE-2021-44525 CVSS 9.8

Zoho ManageEngine PAM360 before build 5303 allows attackers to modify a few aspects of application state because of a filter bypass in wh...

CVE-2021-44675 CVSS 9.8

Zoho ManageEngine ServiceDesk Plus MSP before 10.5 Build 10534 is vulnerable to unauthenticated remote code execution due to a filter byp...

CVE-2021-44676 CVSS 9.8

Zoho ManageEngine Access Manager Plus before 4203 allows anyone to view a few data elements (e.g., access control details) and modify a f...

CVE-2021-44732 CVSS 9.8

Mbed TLS before 3.0.1 has a double free in certain out-of-memory conditions, as demonstrated by an mbedtls_ssl_set_session() failure.

CVE-2021-44790 CVSS 9.8

A carefully crafted request body can cause a buffer overflow in the mod_lua multipart parser (r:parsebody() called from Lua scripts).

View critical disclosures

cvelogic Threat Intelligence