Mar 28, 2022 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

Microsoft Office: 21 CVEs added to CISA KEV today.
WordPress plugin RCE/exploit activity: 5 CVEs flagged today.
10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2010-4398 Microsoft Windows Kernel Stack-Based Buffer Overflow

Actively exploited (CISA KEV)
Listed on CISA KEV

Microsoft Windows Buffer Overflow is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Critical exposure

CVE-2022-0735 Gitlab Info Disclosure

CVSS 10

New critical Gitlab Info Disclosure (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2021-25070 Stopbadbots Block And Stop Bad Bots SQL Injection

CVSS 9.8
Internet-facing CMS deployments affected

New critical Stopbadbots Block And Stop Bad Bots SQL Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

CVE-2022-1096 KEV

Google Chromium V8 Type Confusion

CVE-2022-0543 KEV

Debian-specific Redis Server Lua Sandbox Escape

CVE-2021-38646 KEV

Microsoft Office Access Connectivity Engine Remote Code Execution

CVE-2021-34486 KEV

Microsoft Windows Event Tracing Privilege Escalation

CVE-2021-20028 KEV

SonicWall Secure Remote Access (SRA) SQL Injection

CVE-2021-26085 KEV

Atlassian Confluence Server Pre-Authorization Arbitrary File Read

CVE-2019-7483 KEV

SonicWall SMA100 Directory Traversal

CVE-2018-8440 KEV

Microsoft Windows Privilege Escalation

CVE-2018-8405 KEV

Microsoft DirectX Graphics Kernel Privilege Escalation

CVE-2018-8406 KEV

Microsoft DirectX Graphics Kernel Privilege Escalation

CVE-2017-0213 KEV

Microsoft Windows Privilege Escalation

CVE-2017-0059 KEV

Microsoft Internet Explorer Information Disclosure

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2021-25070 CVSS 9.8

The Block Bad Bots WordPress plugin before 6.88 does not properly sanitise and escape the User Agent before using it in a SQL statement t...

CVE-2022-0342 CVSS 9.8

An authentication bypass vulnerability in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.20 through 4.70, USG FLEX series...

CVE-2022-0479 CVSS 9.8

The Popup Builder WordPress plugin before 4.1.1 does not sanitise and escape the sgpb-subscription-popup-id parameter before using it in...

CVE-2022-0679 CVSS 9.8

The Narnoo Distributor WordPress plugin through 2.5.1 fails to validate and sanitize the lib_path parameter before it is passed into a ca...

CVE-2022-0735 CVSS 10

An issue has been discovered in GitLab CE/EE affecting all versions starting from 12.10 before 14.6.5, all versions starting from 14.7 be...

CVE-2022-0784 CVSS 9.8

The Title Experiments Free WordPress plugin before 9.0.1 does not sanitise and escape the id parameter before using it in a SQL statement...

CVE-2022-0787 CVSS 9.8

The Limit Login Attempts (Spam Protection) WordPress plugin before 5.1 does not sanitise and escape some parameters before using them in...

CVE-2022-0846 CVSS 9.8

The SpeakOut!

CVE-2022-23884 CVSS 9.8

Mojang Bedrock Dedicated Server 1.18.2 is affected by an integer overflow leading to a bound check bypass caused by PurchaseReceiptPacket...

CVE-2022-26278 CVSS 9.8

Tenda AC9 v15.03.2.21_cn was discovered to contain a stack overflow via the time parameter in the PowerSaveSet function.

View critical disclosures

cvelogic Threat Intelligence