Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Three highest-priority changes — analyst brief, not a CVE dump.
Critical active threat
QNAP Network-Attached Storage (NAS) Command Injection is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.
Active exploit activity
Franklinfueling Colibri Firmware Path Traversal now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.
Critical exposure
New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.
CISA KEV — confirmed in-the-wild exploitation.
Google Pixel Out-of-Bounds Write
WatchGuard Firebox and XTM Privilege Escalation
Linux Kernel Privilege Escalation
Microsoft Active Directory Domain Services Privilege Escalation
Microsoft Active Directory Domain Services Privilege Escalation
Checkbox Survey Deserialization of Untrusted Data
QNAP Network-Attached Storage (NAS) Command Injection
Telerik UI for ASP.NET AJAX Unrestricted File Upload
Insecure direct object reference in SUNNY TRIPOWER 5.0 Firmware version 3.10.16.R leads to unauthorized user groups accessing due to inse...
Insecure handling of a download function leads to disclosure of internal files due to path traversal with root privileges in Franklin Fue...
An unauthorized file creation vulnerability in Telesquare TLR-2855KS6 via PUT method can allow creation of CGI scripts.
An unauthorized file deletion vulnerability in Telesquare TLR-2855KS6 via DELETE method can allow deletion of system files and scripts.
Nothing flagged in this category for this digest.
An SQL Injection vulnerability exists in KevinLAB Inc Building Energy Management System 4ST BEMS 1.0.0 ivia the input_id POST parameter i...
Unauthenticated remote code execution in Micro Focus Operations Bridge containerized, affecting versions 2021.05, 2021.08, and newer vers...
The multi-window module has a vulnerability of unauthorized insertion and tampering of Settings.Secure data.Successful exploitation of th...
The Block Bad Bots and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection WordPress plugin before 6.930 does not properly saniti...
An attacker with the ability to modify a user program may change user program code on some ControlLogix, CompactLogix, and GuardLogix Con...
Out-of-bounds Read in r_bin_ne_get_entrypoints function in GitHub repository radareorg/radare2 prior to 5.6.8.
The Wi-Fi module has an event notification vulnerability.Successful exploitation of this vulnerability may allow third-party applications...
VMware Workspace ONE Access and Identity Manager Server-Side Template Injection
In Studio-42 elFinder 2.1.60, there is a vulnerability that causes remote code execution through file name bypass for file upload.
The vulnerability in the MSC800 in all versions before 4.15 allows for an attacker to predict the TCP initial sequence number.