Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Three highest-priority changes — analyst brief, not a CVE dump.
Critical active threat
Apple Multiple Products Memory Corruption is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.
Critical exposure
New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.
Critical exposure
New critical Sparxsystems Enterprise Architect SQL Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
CISA KEV — confirmed in-the-wild exploitation.
Ivanti Connect Secure, Policy Secure, and Neurons Server-Side Request Forgery (SSRF)
Apple Multiple Products Memory Corruption
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
SQL injection vulnerability in Enterprise Architect 16.0.1605 32-bit allows attackers to run arbitrary SQL commands via the Find paramete...
A vulnerability exists in Rockwell Automation FactoryTalk® Service Platform that allows a malicious user to obtain the service token and...
BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner.
BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner.
In Notion Web Clipper 1.0.3(7), a .nib file is susceptible to the Dirty NIB attack.