Apr 10, 2023 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Apple Multiple Products: 2 CVEs added to CISA KEV today.
  • Paradox Ipr512 Firmware: public exploit or PoC linked (DoS)
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2023-28205 Apple Multiple Products WebKit Use-After-Free

  • Actively exploited (CISA KEV)
  • Listed on CISA KEV
  • Remote code execution exposure

Apple Multiple Products RCE is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Active exploit activity

CVE-2023-24709 Paradox Ipr512 Firmware DoS

  • Public exploit or PoC available
  • Exploit activity linked

Paradox Ipr512 Firmware DoS now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Critical exposure

CVE-2023-27497 Sap Diagnostics Agent

  • CVSS 10

New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Apple iOS, iPadOS, and macOS IOSurfaceAccelerator Out-of-Bounds Write

View KEV additions

Exploit & PoC activity

CVE-2023-1826 Exploit

A vulnerability, which was classified as critical, was found in SourceCodester Online Computer and Laptop Store 1.0.

CVE-2023-24709 Exploit

An issue found in Paradox Security Systems IPR512 allows attackers to cause a denial of service via the login.html and login.xml parameters.

CVE-2023-24892 Exploit

Microsoft Edge (Chromium-based) Webview2 Spoofing Vulnerability

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2023-26065 CVSS 9.8

Certain Lexmark devices through 2023-02-19 have an Integer Overflow.

CVE-2023-26066 CVSS 9.8

Certain Lexmark devices through 2023-02-19 have Improper Validation of an Array Index.

CVE-2023-26068 CVSS 9.8

Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 2 of 4).

CVE-2023-26069 CVSS 9.8

Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 3 of 4).

CVE-2023-26070 CVSS 9.8

Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 4 of 4).

CVE-2023-27076 CVSS 9.8

Command injection vulnerability found in Tenda G103 v.1.0.0.5 allows attacker to execute arbitrary code via a the language parameter.

CVE-2023-27178 CVSS 9.8

An arbitrary file upload vulnerability in the upload function of GDidees CMS 3.9.1 allows attackers to execute arbitrary code via a craft...

Due to missing authentication and insufficient input validation, the OSCommand Bridge of SAP Diagnostics Agent - version 720, allows an a...

CVE-2023-27497 CVSS 10

Due to missing authentication and input sanitization of code the EventLogServiceCollector of SAP Diagnostics Agent - version 720, allows...

CVE-2023-28765 CVSS 9.8

An attacker with basic privileges in SAP BusinessObjects Business Intelligence Platform (Promotion Management) - versions 420, 430, can g...

View critical disclosures

cvelogic Threat Intelligence