Mar 27, 2023 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

Fortinet Multiple Products: public exploit or PoC linked (Auth Bypass)
10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Active exploit activity

CVE-2022-39285 Zoneminder cross-site scripting

Public exploit or PoC available
Exploit activity linked

Zoneminder cross-site scripting now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Active exploit activity

CVE-2022-39290 ZoneMinder is a free, open source Closed-circuit television software application.

Public exploit or PoC available
Exploit activity linked

Zoneminder CSRF now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Critical exposure

CVE-2022-48353 Some smartphones have configuration issues.

CVSS 9.8
Potential privilege escalation to admin/root

New critical Huawei Emui Privilege Escalation (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

CVE-2022-40684 Exploit

Fortinet Multiple Products Authentication Bypass

CVE-2022-39285 Exploit

ZoneMinder is a free, open source Closed-circuit television software application The file parameter is vulnerable to a cross site scripti...

CVE-2022-39290 Exploit

ZoneMinder is a free, open source Closed-circuit television software application.

CVE-2022-39291 Exploit

ZoneMinder is a free, open source Closed-circuit television software application.

CVE-2019-13068 Exploit

public/app/features/panel/panel_ctrl.ts in Grafana before 6.2.5 allows HTML Injection in panel drilldown links (via the Title or url field).

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2022-46415 CVSS 9.1

DJI Spark 01.00.0900 allows remote attackers to prevent legitimate terminal connections by exhausting the DHCP IP address pool.

CVE-2022-46416 CVSS 9.1

Parrot Bebop 4.7.1.

CVE-2022-48348 CVSS 9.1

The MediaProvider module has a vulnerability of unauthorized data read.

CVE-2022-48349 CVSS 9.1

The control component has a spoofing vulnerability.

CVE-2022-48353 CVSS 9.8

Some smartphones have configuration issues.

CVE-2023-1136 CVSS 9.8

In Delta Electronics InfraSuite Device Master versions prior to 1.0.5, an unauthenticated attacker could generate a valid token, which wo...

CVE-2023-1140 CVSS 9.8

Delta Electronics InfraSuite Device Master versions prior to 1.0.5 contain a vulnerability that could allow an attacker to achieve unauth...

CVE-2023-1665 CVSS 9.8

Improper Restriction of Excessive Authentication Attempts in GitHub repository linagora/twake prior to 0.0.0.

CVE-2023-25261 CVSS 9.8

Certain Stimulsoft GmbH products are affected by: Remote Code Execution.

CVE-2023-27847 CVSS 9.8

SQL injection vulnerability found in PrestaShop xipblog v.2.0.1 and before allow a remote attacker to gain privileges via the xipcategory...

View critical disclosures

cvelogic Threat Intelligence