Aug 1, 2023 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • 9 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical exposure

CVE-2022-39986 Raspap Command Injection

  • CVSS 9.8

New critical Raspap Command Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2023-31710 Tp-link Archer Ax21 Firmware Buffer Overflow

  • CVSS 9.8

New critical Tp-link Archer Ax21 Firmware Buffer Overflow (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2023-4056 Debian Linux Memory Corruption

  • CVSS 9.8

New critical Debian Linux Memory Corruption (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2022-39986 CVSS 9.8

A Command injection vulnerability in RaspAP 2.8.0 thru 2.8.7 allows unauthenticated attackers to execute arbitrary commands via the cfg_i...

CVE-2023-31710 CVSS 9.8

TP-Link Archer AX21(US)_V3_1.1.4 Build 20230219 and AX21(US)_V3.6_1.1.4 Build 20230219 are vulnerable to Buffer Overflow.

CVE-2023-33493 CVSS 9.8

An Unrestricted Upload of File with Dangerous Type vulnerability in the Ajaxmanager File and Database explorer (ajaxmanager) module for P...

CVE-2023-33561 CVSS 9.8

Improper input validation of password parameter in PHP Jabbers Time Slots Booking Calendar v 3.3 results in insecure passwords.

CVE-2023-33562 CVSS 9.8

User enumeration is found in in PHP Jabbers Time Slots Booking Calendar v3.3.

CVE-2023-36210 CVSS 9.8

MotoCMS Version 3.4.3 Store Category Template was discovered to contain a Server-Side Template Injection (SSTI) vulnerability via the key...

CVE-2023-4056 CVSS 9.8

Memory safety bugs present in Firefox 115, Firefox ESR 115.0, Firefox ESR 102.13, Thunderbird 115.0, and Thunderbird 102.13.

CVE-2023-4057 CVSS 9.8

Memory safety bugs present in Firefox 115, Firefox ESR 115.0, and Thunderbird 115.0.

CVE-2023-4058 CVSS 9.8

Memory safety bugs present in Firefox 115.

View critical disclosures

cvelogic Threat Intelligence