May 31, 2023 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Zyxel Multiple Firewalls added to CISA KEV — confirmed in-the-wild exploitation.
  • Pydio Cells: public exploit or PoC linked (SSRF)
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2023-28771 Zyxel Multiple Firewalls OS Command Injection

  • Actively exploited (CISA KEV)
  • Listed on CISA KEV

Zyxel Multiple Firewalls Command Injection is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Active exploit activity

CVE-2023-0527 Online Security Guards Hiring System Project Online Security Guards Hiring System cross-site scripting

  • Public exploit or PoC available
  • Exploit activity linked

Online Security Guards Hiring System Project Online Security Guards Hiring System cross-site scripting now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Critical exposure

CVE-2021-45039 Uniview Camera Firmware Code Execution

  • CVSS 9.8
  • Remote code execution exposure

New critical Uniview Camera Firmware Code Execution (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

View KEV additions

Exploit & PoC activity

CVE-2023-32749 Exploit

Pydio Cells allows users by default to create so-called external users in order to share files with them.

CVE-2023-33440 Exploit

Sourcecodester Faculty Evaluation System v1.0 is vulnerable to arbitrary code execution via /eval/ajax.php?action=save_user.

CVE-2023-0527 Exploit

A vulnerability was found in PHPGurukul Online Security Guards Hiring System 1.0 and classified as problematic.

CVE-2023-0455 Exploit

Unrestricted Upload of File with Dangerous Type in GitHub repository unilogies/bumsys prior to v1.0.3-beta.

CVE-2018-8065 Exploit

An issue was discovered in the web server in Flexense SyncBreeze Enterprise 10.6.24.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2021-45039 CVSS 9.8

Multiple models of the Uniview IP Camera (e.g., IPC_G6103 B6103.16.10.B25.201218, IPC_G61, IPC21, IPC23, IPC32, IPC36, IPC62, and IPC_HCM...

CVE-2022-35744 CVSS 9.8

Windows Point-to-Point Protocol (PPP) Remote Code Execution Vulnerability

CVE-2023-23952 CVSS 9.8

Advanced Secure Gateway and Content Analysis, prior to 7.3.13.1 / 3.1.6.0, may be susceptible to a Command Injection vulnerability.

CVE-2023-29747 CVSS 9.8

Story Saver for Instragram - Video Downloader 1.0.6 for Android exists exposed component, the component provides the method to modify the...

CVE-2023-33508 CVSS 9.8

KramerAV VIA GO² < 4.0.1.1326 is vulnerable to unauthenticated file upload resulting in Remote Code Execution (RCE).

CVE-2023-33509 CVSS 9.8

KramerAV VIA GO² < 4.0.1.1326 is vulnerable to SQL Injection.

CVE-2023-33730 CVSS 9.8

Privilege Escalation in the "GetUserCurrentPwd" function in Microworld Technologies eScan Management Console 14.0.1400.2281 allows any re...

CVE-2023-33735 CVSS 9.8

D-Link DIR-846 v1.00A52 was discovered to contain a remote command execution (RCE) vulnerability via the tomography_ping_address paramete...

CVE-2023-34218 CVSS 9.1

In JetBrains TeamCity before 2023.05 bypass of permission checks allowing to perform admin actions was possible

CVE-2023-34257 CVSS 9.8

An issue was discovered in BMC Patrol through 23.1.00.

View critical disclosures

cvelogic Threat Intelligence