Jul 6, 2025 Cyber Threat Intelligence

Daily summary

• Zohocorp Manageengine Adselfservice Plus — exploitation likelihood rose sharply (EPSS 2.7% → 25% · rising (+23%)).

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Emerging exploitation risk

CVE-2022-34829 Zohocorp Manageengine Adselfservice Plus DoS

• Exploitation likelihood sharply increased
• EPSS 2.7% → 25% · rising (+23%)

Zohocorp Manageengine Adselfservice Plus: EPSS 2.7% → 25% · rising (+23%) — EPSS is climbing faster than peer CVEs in this window, a leading indicator even before KEV or public exploit linkage.

Emerging exploitation risk

CVE-2005-0277 3com 3cdaemon Buffer Overflow

• Exploitation likelihood sharply increased
• EPSS 61% → 79% · rising (+19%)

3com 3cdaemon: EPSS 61% → 79% · rising (+19%) — EPSS is climbing faster than peer CVEs in this window, a leading indicator even before KEV or public exploit linkage.

Critical exposure

CVE-2025-5333 Remote attackers can execute arbitrary code in the context of the vulnerable service process.

• CVSS 9.5

New critical disclosure (CVSS 9.5) — high severity with a short public awareness window before exploit material typically surfaces.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

CVE-2022-34829 EPSS 2.7% → 25% · rising (+23%) CVSS 7.5

Zohocorp Manageengine Adselfservice Plus DoS

CVE-2005-0277 EPSS 61% → 79% · rising (+19%) CVSS 5

3com 3cdaemon Buffer Overflow

CVE-2004-2074 EPSS 40% → 56% · rising (+15%) CVSS 5

Bolintech Dream Ftp Server DoS

CVE-2022-32092 EPSS 9.4% → 22% · rising (+13%) CVSS 9.8

Dlink Dir-645 Firmware Command Injection

See EPSS increases

New critical disclosures

CVE-2025-5333 CVSS 9.5

Remote attackers can execute arbitrary code in the context of the vulnerable service process.

View critical disclosures