Dec 20, 2022 Cyber Threat Intelligence
Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Daily summary
- 10 new critical disclosures — review patch status on exposed services.
Top threats today
Three highest-priority changes — analyst brief, not a CVE dump.
Critical exposure
CVE-2022-46319
Fingerprint calibration has a vulnerability of lacking boundary judgment.
New critical Huawei Emui Out-of-Bounds Write (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
CVE-2022-46320
The kernel module has an out-of-bounds read vulnerability.
New critical Huawei Emui Out-of-Bounds Write (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
CVE-2022-46323
Huawei Emui Out-of-Bounds Write
New critical Huawei Emui Out-of-Bounds Write (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Active exploitation
CISA KEV — confirmed in-the-wild exploitation.
Nothing flagged in this category for this digest.
View KEV additions
Exploitation dynamics
Nothing flagged in this category for this digest.
See EPSS increases
New critical disclosures
WBCE CMS v1.5.4 can implement getshell by modifying the upload file type.
A thread security vulnerability exists in the authentication process.
Fingerprint calibration has a vulnerability of lacking boundary judgment.
The kernel module has an out-of-bounds read vulnerability.
Some smartphones have the out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause system service except...
Some smartphones have the out-of-bounds write vulnerability.
Some smartphones have the out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause system service except...
Some smartphones have the out-of-bounds write vulnerability.
Some smartphones have configuration issues.
Libksba before 1.6.3 is prone to an integer overflow vulnerability in the CRL signature parser.
View critical disclosures
cvelogic
Threat Intelligence