Sep 6, 2023 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Apache RocketMQ added to CISA KEV — confirmed in-the-wild exploitation.
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2023-33246 Apache RocketMQ Command Execution

  • Actively exploited (CISA KEV)
  • Listed on CISA KEV

Confirmed in-the-wild exploitation per CISA KEV — active threat momentum, not theoretical risk.

Critical exposure

CVE-2023-20238 New critical Cisco Broadworks Application Delivery Platform exposure disclosed.

  • CVSS 10
  • Network edge / SD-WAN deployments affected

New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.

Critical exposure

CVE-2023-39967 WireMock is a tool for mocking HTTP services.

  • CVSS 10

New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2020-10131 CVSS 9.8

SearchBlox before Version 9.2.1 is vulnerable to CSV macro injection in "Featured Results" parameter.

CVE-2021-36023 CVSS 9.1

Magento Commerce versions 2.4.2 (and earlier), 2.4.2-p1 (and earlier) and 2.3.7 (and earlier) are affected by an XML Injection vulnerabil...

CVE-2023-0925 CVSS 9.8

Version 10.11 of webMethods OneData runs an embedded instance of Azul Zulu Java 11.0.15 which hosts a Java RMI registry (listening on TCP...

CVE-2023-20238 CVSS 10

New critical Cisco Broadworks Application Delivery Platform exposure disclosed.

CVE-2023-39967 CVSS 10

WireMock is a tool for mocking HTTP services.

CVE-2023-40397 CVSS 9.8

The issue was addressed with improved checks.

CVE-2023-41149 CVSS 9.8

F-RevoCRM version7.3.7 and version7.3.8 contains an OS command injection vulnerability.

CVE-2023-41330 CVSS 9.8

knplabs/knp-snappy is a PHP library allowing thumbnail, snapshot or PDF generation from a url or a html page.

CVE-2023-4589 CVSS 9.1

Insufficient verification of data authenticity vulnerability in Delinea Secret Server, in its v10.9.000002 version.

CVE-2023-4634 CVSS 9.8

The Media Library Assistant plugin for WordPress is vulnerable to Local File Inclusion and Remote Code Execution in versions up to, and i...

View critical disclosures

cvelogic Threat Intelligence