Nov 23, 2022 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical exposure

CVE-2022-41928 Xwiki

  • CVSS 9.9

New critical disclosure (CVSS 9.9) — high severity with a short public awareness window before exploit material typically surfaces.

Critical exposure

CVE-2022-41931 Xwiki

  • CVSS 9.9

New critical disclosure (CVSS 9.9) — high severity with a short public awareness window before exploit material typically surfaces.

Critical exposure

CVE-2022-41934 Xwiki

  • CVSS 9.9

New critical disclosure (CVSS 9.9) — high severity with a short public awareness window before exploit material typically surfaces.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2022-41924 CVSS 9.6

A vulnerability identified in the Tailscale Windows client allows a malicious website to reconfigure the Tailscale daemon `tailscaled`, w...

CVE-2022-41928 CVSS 9.9

XWiki Platform vulnerable to Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection') in AttachmentSelector...

CVE-2022-41931 CVSS 9.9

xwiki-platform-icon-ui is vulnerable to Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection').

CVE-2022-41934 CVSS 9.9

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.

CVE-2022-43196 CVSS 9.1

dedecmdv6 v6.1.9 is vulnerable to Arbitrary file deletion via file_manage_control.php.

CVE-2022-44117 CVSS 9.8

Boa 0.94.14rc21 is vulnerable to SQL Injection via username.

CVE-2022-44118 CVSS 9.8

dedecmdv6 v6.1.9 is vulnerable to Remote Code Execution (RCE) via file_manage_control.php.

CVE-2022-44120 CVSS 9.8

dedecmdv6 6.1.9 is vulnerable to SQL Injection.

CVE-2022-45276 CVSS 9.8

An issue in the /index/user/user_edit.html component of YJCMS v1.0.9 allows unauthenticated attackers to obtain the Administrator account...

CVE-2022-45872 CVSS 9.8

iTerm2 before 3.4.18 mishandles a DECRQSS response.

View critical disclosures

cvelogic Threat Intelligence