Apr 16, 2023 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • 9 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical exposure

CVE-2023-29211 XWiki Commons are technical libraries common to several other top level XWiki projects.

  • CVSS 9.9

New critical disclosure (CVSS 9.9) — high severity with a short public awareness window before exploit material typically surfaces.

Critical exposure

CVE-2023-29212 XWiki Commons are technical libraries common to several other top level XWiki projects.

  • CVSS 9.9

New critical disclosure (CVSS 9.9) — high severity with a short public awareness window before exploit material typically surfaces.

Critical exposure

CVE-2023-29214 XWiki Commons are technical libraries common to several other top level XWiki projects.

  • CVSS 9.9

New critical disclosure (CVSS 9.9) — high severity with a short public awareness window before exploit material typically surfaces.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2021-33990 CVSS 9.8

Liferay Portal 6.2.5 allows Command=FileUpload&Type=File&CurrentFolder=/ requests when frmfolders.html exists.

CVE-2022-48312 CVSS 9.1

The HwPCAssistant module has the out-of-bounds read/write vulnerability.

CVE-2023-29211 CVSS 9.9

XWiki Commons are technical libraries common to several other top level XWiki projects.

CVE-2023-29212 CVSS 9.9

XWiki Commons are technical libraries common to several other top level XWiki projects.

CVE-2023-29214 CVSS 9.9

XWiki Commons are technical libraries common to several other top level XWiki projects.

CVE-2023-29507 CVSS 9.1

XWiki Commons are technical libraries common to several other top level XWiki projects.

CVE-2023-29509 CVSS 9.9

XWiki Commons are technical libraries common to several other top level XWiki projects.

CVE-2023-29511 CVSS 9.9

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.

CVE-2023-30537 CVSS 9.9

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.

View critical disclosures

cvelogic Threat Intelligence