Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Daily summary
TerraMaster OS added to CISA KEV — confirmed in-the-wild exploitation.
9 new critical disclosures — review patch status on exposed services.
Top threats today
Three highest-priority changes — analyst brief, not a CVE dump.
Critical active threat
CVE-2015-2291Intel Ethernet Diagnostics Driver for Windows Denial-of-Service
Actively exploited (CISA KEV)
Listed on CISA KEV
Intel Ethernet Diagnostics Driver For Windows DoS is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.
Critical exposure
CVE-2023-0777Authentication Bypass by Primary Weakness in GitHub repository modoboa/modoboa prior to 2.0.4.
New critical Modoboa Auth Bypass (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
CVE-2023-23162Phpgurukul Art Gallery Management System SQL Injection
CVSS 9.8
New critical Phpgurukul Art Gallery Management System SQL Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.