Dec 27, 2023 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • 9 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical exposure

CVE-2023-47883 Vladymix Tv Browser Code Execution

  • CVSS 9.8
  • Remote code execution exposure

New critical Vladymix Tv Browser Code Execution (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2023-6190 Ikcu University Information Management System Path Traversal

  • CVSS 9.8

New critical Ikcu University Information Management System Path Traversal (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2023-43481 Tcl Browser Tv Web - Browsehere

  • CVSS 9.8

New critical disclosure (CVSS 9.8) — high severity with a short public awareness window before exploit material typically surfaces.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2023-43481 CVSS 9.8

An issue in Shenzhen TCL Browser TV Web BrowseHere (aka com.tcl.browser) 6.65.022_dab24cc6_231221_gp allows a remote attacker to execute...

CVE-2023-43955 CVSS 9.8

The com.phlox.tvwebbrowser TV Bro application through 2.0.0 for Android mishandles external intents through WebView.

CVE-2023-47883 CVSS 9.8

The com.altamirano.fabricio.tvbrowser TV browser application through 4.5.1 for Android is vulnerable to JavaScript code execution via an...

CVE-2023-49000 CVSS 9.8

An issue in ArtistScope ArtisBrowser v.34.1.5 and before allows an attacker to bypass intended access restrictions via interaction with t...

CVE-2023-49001 CVSS 9.8

An issue in Indi Browser (aka kvbrowser) v.12.11.23 allows an attacker to bypass intended access restrictions via interaction with the co...

CVE-2023-50255 CVSS 9.3

Deepin-Compressor is the default archive manager of Deepin Linux OS.

CVE-2023-51084 CVSS 9.8

hyavijava v6.0.07.1 was discovered to contain a stack overflow via the ResultConverter.convert2Xml method.

CVE-2023-6190 CVSS 9.8

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in İzmir Katip Çelebi University University...

CVE-2023-6879 CVSS 9

Increasing the resolution of video frames, while performing a multi-threaded encode, can result in a heap overflow in av1_loop_restoratio...

View critical disclosures

cvelogic Threat Intelligence