Jan 25, 2022 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Phpipam: public exploit or PoC linked (SQL injection)
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Active exploit activity

CVE-2022-23046 Phpipam SQL injection

  • Public exploit or PoC available
  • Exploit activity linked

Phpipam SQL injection now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Critical exposure

CVE-2021-36294 Dell Emc Unity Operating Environment Auth Bypass

  • CVSS 9.8
  • Authentication bypass — unauthenticated access risk

New critical Dell Emc Unity Operating Environment Auth Bypass (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2021-45802 MartDevelopers iResturant 1.0 is vulnerable to SQL Injection.

  • CVSS 9.8

New critical Iresturant Project Iresturant SQL Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

CVE-2022-23046 Exploit

PhpIPAM v1.4.4 allows an authenticated admin user to inject SQL sentences in the "subnet" parameter while searching a subnet via app/admi...

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2021-36294 CVSS 9.8

Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain an authentication bypass vulnerability.

CVE-2021-3850 CVSS 9.1

Authentication Bypass by Primary Weakness in GitHub repository adodb/adodb prior to 5.20.21.

CVE-2021-43298 CVSS 9.8

The code that performs password matching when using 'Basic' HTTP authentication does not use a constant-time memcmp and has no rate-limit...

CVE-2021-45802 CVSS 9.8

MartDevelopers iResturant 1.0 is vulnerable to SQL Injection.

CVE-2021-46033 CVSS 9.8

In ForestBlog, as of 2021-12-28, File upload can bypass verification.

CVE-2021-46089 CVSS 9.8

In JeecgBoot 3.0, there is a SQL injection vulnerability that can operate the database with root privileges.

CVE-2021-46560 CVSS 9.8

The firmware on Moxa TN-5900 devices through 3.1 allows command injection that could lead to device damage.

CVE-2022-0332 CVSS 9.8

A flaw was found in Moodle in versions 3.11 to 3.11.4.

CVE-2022-23944 CVSS 9.1

User can access /plugin api without authentication.

CVE-2022-23959 CVSS 9.1

In Varnish Cache before 6.6.2 and 7.x before 7.0.2, Varnish Cache 6.0 LTS before 6.0.10, and and Varnish Enterprise (Cache Plus) 4.1.x be...

View critical disclosures

cvelogic Threat Intelligence