Feb 17, 2023 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical exposure

CVE-2021-32163 Linuxfoundation Modular Open Smart Network privilege escalation

  • CVSS 9.8
  • Potential privilege escalation to admin/root

New critical Linuxfoundation Modular Open Smart Network privilege escalation (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2021-33226 Saltstack Salt Buffer Overflow

  • CVSS 9.8

New critical Saltstack Salt Buffer Overflow (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2021-33948 Hotels Server Project Hotels Server SQL Injection

  • CVSS 9.8

New critical Hotels Server Project Hotels Server SQL Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2021-32163 CVSS 9.8

Authentication vulnerability in MOSN v.0.23.0 allows attacker to escalate privileges via case-sensitive JWT authorization.

CVE-2021-33226 CVSS 9.8

Buffer Overflow vulnerability in Saltstack v.3003 and before allows attacker to execute arbitrary code via the func variable in salt/salt...

CVE-2021-33391 CVSS 9.8

An issue in HTACG HTML Tidy v5.7.28 allows attacker to execute arbitrary code via the -g option of the CleanNode() function in gdoc.c.

CVE-2021-33948 CVSS 9.8

SQL injection vulnerability in FantasticLBP Hotels Server v1.0 allows attacker to execute arbitrary code via the username parameter.

CVE-2021-33949 CVSS 9.8

An issue in FeMiner WMS v1.1 allows attackers to execute arbitrary code via the filename parameter and the exec function.

CVE-2021-34182 CVSS 9.8

An issue in ttyd v.1.6.3 allows attacker to execute arbitrary code via default configuration permissions.

CVE-2021-35261 CVSS 9.8

File Upload Vulnerability in Yupoxion BearAdmin before commit 10176153528b0a914eb4d726e200fd506b73b075 allows attacker to execute arbitra...

CVE-2022-40021 CVSS 9.8

QVidium Technologies Amino A140 (prior to firmware version 1.0.0-283) was discovered to contain a command injection vulnerability.

CVE-2023-23064 CVSS 9.8

TOTOLINK A720R V4.1.5cu.532_ B20210610 is vulnerable to Incorrect Access Control.

CVE-2023-23279 CVSS 9.8

Canteen Management System 1.0 is vulnerable to SQL Injection via /php_action/getOrderReport.php.

View critical disclosures

cvelogic Threat Intelligence