Jul 7, 2023 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

Arm Mali Graphics Processing Unit (GPU) added to CISA KEV — confirmed in-the-wild exploitation.
Microsoft Office: public exploit or PoC linked (RCE)
10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2021-29256 Arm Mali GPU Kernel Driver Use-After-Free

Actively exploited (CISA KEV)
Listed on CISA KEV
Potential privilege escalation to admin/root

Arm Mali Graphics Processing Unit (GPU) Privilege Escalation is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Active exploit activity

CVE-2022-21907 HTTP Protocol Stack Remote Code Execution Vulnerability

Public exploit or PoC available
Exploit activity linked
Remote code execution exposure

Microsoft Windows 10 RCE now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Critical exposure

CVE-2021-32495 Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function.

CVSS 10

New critical Radare2 DoS (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

CVE-2021-29256 KEV

Arm Mali GPU Kernel Driver Use-After-Free

View KEV additions

Exploit & PoC activity

CVE-2023-33131 Exploit

Microsoft Outlook Remote Code Execution Vulnerability

CVE-2022-21907 Exploit

HTTP Protocol Stack Remote Code Execution Vulnerability

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2021-32495 CVSS 10

Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function.

CVE-2022-4361 CVSS 10

Keycloak, an open-source identity and access management solution, has a cross-site scripting (XSS) vulnerability in the SAML or OIDC prov...

CVE-2023-36993 CVSS 9.8

The cryptographically insecure random number generator being used in TravianZ 8.3.4 and 8.3.3 in the password reset function allows an at...

CVE-2023-36994 CVSS 9.8

In TravianZ 8.3.4 and 8.3.3, Incorrect Access Control in the installation script allows an attacker to overwrite the server configuration...

CVE-2023-37170 CVSS 9.8

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain an unauthenticated remote code execution (RCE) vulnerability via the la...

CVE-2023-37171 CVSS 9.8

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the admuser parameter in the setP...

CVE-2023-37172 CVSS 9.8

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the ip parameter in the setDiagno...

CVE-2023-37173 CVSS 9.8

TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vulnerability via the command parameter in the setT...

CVE-2023-37261 CVSS 9.6

OpenComputers is a Minecraft mod that adds programmable computers and robots to the game.

CVE-2023-37262 CVSS 9.6

CC: Tweaked is a mod for Minecraft which adds programmable computers, turtles, and more to the game.

View critical disclosures

cvelogic Threat Intelligence