Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Three highest-priority changes — analyst brief, not a CVE dump.
Critical exposure
New critical Uci Idol2 RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical Uci Idol2 RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical Uci Idol2 RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
CISA KEV — confirmed in-the-wild exploitation.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Forcepoint Web Security (Transactio...
Swissphone DiCal-RED 4009 devices allow a remote attacker to gain access to the administrative web interface via the device password's ha...
Swissphone DiCal-RED 4009 devices allow a remote attacker to gain a root shell via TELNET without authentication.
An Incorrect Access Control vulnerability was found in /admin/edit_room_controller.php in Kashipara Hotel Management System v1.0, which a...
An Incorrect Access Control vulnerability was found in /admin/add_room_controller.php in Kashipara Hotel Management System v1.0, which al...
The Mirai botnet through 2024-08-19 mishandles simultaneous TCP connections to the CNC (command and control) server.
An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12.
An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12.
An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12.
An issue was discovered in UCI IDOL 2 (aka uciIDOL or IDOL2) through 2.12.