Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Daily summary
VMware Workspace ONE Access And Identity Manager added to CISA KEV — confirmed in-the-wild exploitation.
9 new critical disclosures — review patch status on exposed services.
Top threats today
Three highest-priority changes — analyst brief, not a CVE dump.
Critical active threat
CVE-2022-22954VMware Workspace ONE Access and Identity Manager Server-Side Template Injection
Actively exploited (CISA KEV)
Listed on CISA KEV
Remote code execution exposure
VMware Workspace ONE Access And Identity Manager RCE is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.