Nov 14, 2023 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Microsoft Windows: 3 CVEs added to CISA KEV today.
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2023-36033 Microsoft Windows Desktop Window Manager (DWM) Core Library Privilege Escalation

  • Actively exploited (CISA KEV)
  • Listed on CISA KEV
  • Potential privilege escalation to admin/root

Microsoft Windows Privilege Escalation is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Critical exposure

CVE-2023-31273 Intel Data Center Manager privilege escalation

  • CVSS 10
  • Potential privilege escalation to admin/root

New critical Intel Data Center Manager privilege escalation (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2023-34060 Vmware Cloud Director Auth Bypass

  • CVSS 9.8
  • Authentication bypass — unauthenticated access risk

New critical Vmware Cloud Director Auth Bypass (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Microsoft Windows SmartScreen Security Feature Bypass

Microsoft Windows Desktop Window Manager (DWM) Core Library Privilege Escalation

Microsoft Windows Cloud Files Mini Filter Driver Privilege Escalation

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2023-31273 CVSS 10

Protection mechanism failure in some Intel DCM software before version 5.2 may allow an unauthenticated user to potentially enable escala...

CVE-2023-34060 CVSS 9.8

VMware Cloud Director Appliance contains an authentication bypass vulnerability in case VMware Cloud Director Appliance was upgraded to 1...

CVE-2023-39335 CVSS 9.8

A security vulnerability has been identified in EPMM Versions 11.10, 11.9 and 11.8 and older allowing an unauthenticated threat actor to...

CVE-2023-39337 CVSS 9.1

A security vulnerability in EPMM Versions 11.10, 11.9 and 11.8 older allows a threat actor with knowledge of an enrolled device identifie...

CVE-2023-43979 CVSS 9.8

ETS Soft ybc_blog before v4.4.0 was discovered to contain a SQL injection vulnerability via the component Ybc_blogBlogModuleFrontControll...

CVE-2023-45614 CVSS 9.8

There are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sendi...

CVE-2023-45615 CVSS 9.8

There are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sendi...

CVE-2023-45616 CVSS 9.8

There is a buffer overflow vulnerability in the underlying AirWave client service that could lead to unauthenticated remote code executio...

CVE-2023-47308 CVSS 9.8

In the module "Newsletter Popup PRO with Voucher/Coupon code" (newsletterpop) before version 2.6.1 from Active Design for PrestaShop, a g...

CVE-2023-47678 CVSS 9.1

An improper access control vulnerability exists in RT-AC87U all versions.

View critical disclosures

cvelogic Threat Intelligence