Critical exposure
CVE-2024-37901 Xwiki RCE
- CVSS 9.9
- Remote code execution exposure
New critical Xwiki RCE (CVSS 9.9) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Three highest-priority changes — analyst brief, not a CVE dump.
Critical exposure
New critical Xwiki RCE (CVSS 9.9) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical disclosure (CVSS 9.8) — high severity with a short public awareness window before exploit material typically surfaces.
Critical exposure
New critical disclosure (CVSS 9.8) — high severity with a short public awareness window before exploit material typically surfaces.
CISA KEV — confirmed in-the-wild exploitation.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
Weak authentication in Microsoft Dynamics 365 allows an unauthenticated attacker to elevate privileges over a network.
slpd-lite is a unicast SLP UDP server.
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
it's possible for an attacker to gain administrative access without having any kind of account on the targeted site and perform unauthori...
A verbose error handling issue in the proxy service implemented in the GravityZone Update Server allows an attacker to cause a server-sid...
When the device is shared, the homepage module are before 2.19.0 in eWeLink Cloud Service allows Secondary user to take over devices as p...
A vulnerability was found in TOTOLINK CP450 4.1.0cu.747_B20191224.