Nov 8, 2022 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

Microsoft Windows: 4 CVEs added to CISA KEV today.
10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2021-25370 Samsung Mobile Devices Memory Corruption

Actively exploited (CISA KEV)
Listed on CISA KEV

Samsung Mobile Devices Memory Corruption is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Critical exposure

CVE-2022-43546 Siemens 7kg9501-0aa01-2aa1 Firmware

CVSS 9.9

New critical disclosure (CVSS 9.9) — high severity with a short public awareness window before exploit material typically surfaces.

Critical exposure

CVE-2022-34822 Nec Expresscluster X Path Traversal

CVSS 9.8

New critical Nec Expresscluster X Path Traversal (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

CVE-2022-41073 KEV

Microsoft Windows Print Spooler Privilege Escalation

CVE-2022-41091 KEV

Microsoft Windows Mark of the Web (MOTW) Security Feature Bypass

CVE-2022-41125 KEV

Microsoft Windows CNG Key Isolation Service Privilege Escalation

CVE-2022-41128 KEV

Microsoft Windows Scripting Languages Remote Code Execution

CVE-2021-25369 KEV

Samsung Mobile Devices Improper Access Control

CVE-2021-25370 KEV

Samsung Mobile Devices Memory Corruption

CVE-2021-25337 KEV

Samsung Mobile Devices Improper Access Control

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2022-27510 CVSS 9.8

Unauthorized access to Gateway user capabilities

CVE-2022-33321 CVSS 9.8

Cleartext Transmission of Sensitive Information vulnerability due to the use of Basic Authentication for HTTP connections in Mitsubishi E...

CVE-2022-34822 CVSS 9.8

Path traversal vulnerability in CLUSTERPRO X 5.0 for Windows and earlier, EXPRESSCLUSTER X 5.0 for Windows and earlier, CLUSTERPRO X 5.0...

CVE-2022-34823 CVSS 9.8

Buffer overflow vulnerability in CLUSTERPRO X 5.0 for Windows and earlier, EXPRESSCLUSTER X 5.0 for Windows and earlier, CLUSTERPRO X 5.0...

CVE-2022-34824 CVSS 9.8

Weak File and Folder Permissions vulnerability in CLUSTERPRO X 5.0 for Windows and earlier, EXPRESSCLUSTER X 5.0 for Windows and earlier,...

CVE-2022-34825 CVSS 9.8

Uncontrolled Search Path Element in CLUSTERPRO X 5.0 for Windows and earlier, EXPRESSCLUSTER X 5.0 for Windows and earlier, CLUSTERPRO X...

CVE-2022-37015 CVSS 9.8

Symantec Endpoint Detection and Response (SEDR) Appliance, prior to 4.7.0, may be susceptible to a privilege escalation vulnerability, wh...

CVE-2022-39328 CVSS 9.8

Grafana is an open-source platform for monitoring and observability.

CVE-2022-43546 CVSS 9.9

A vulnerability has been identified in POWER METER SICAM Q100 (All versions < V2.50), POWER METER SICAM Q100 (All versions < V2.50), POWE...

CVE-2022-44457 CVSS 9.8

A vulnerability has been identified in Mendix SAML (Mendix 7 compatible) (All versions < V1.17.0), Mendix SAML (Mendix 7 compatible) (All...

View critical disclosures

cvelogic Threat Intelligence