Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Three highest-priority changes — analyst brief, not a CVE dump.
Emerging exploitation risk
Mcafee Antivirus Engine: EPSS 5.4% → 23% · rising (+18%) — EPSS is climbing faster than peer CVEs in this window, a leading indicator even before KEV or public exploit linkage.
Critical exposure
New critical Linuxserver Docker-heimdall open redirect (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical disclosure (CVSS 9.8) — high severity with a short public awareness window before exploit material typically surfaces.
CISA KEV — confirmed in-the-wild exploitation.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
Mcafee Antivirus Engine Buffer Overflow
A race condition was addressed with improved state handling.
A downgrade issue was addressed with additional code-signing restrictions.
This issue was addressed with improved input validation.
A logic issue was addressed with improved checks.
A permissions issue was addressed with additional sandbox restrictions.
A race condition was addressed with additional validation.
A Missing Authorization vulnerability in SUSE Linux Manager allows anyone with the ability to connect to port 443 of SUSE Manager is able...
LinuxServer.io heimdall 2.6.3-ls307 contains a vulnerability in how it handles user-supplied HTTP headers, specifically `X-Forwarded-Host...
dedupe is a python library that uses machine learning to perform fuzzy matching, deduplication and entity resolution quickly on structure...
OAuth2-Proxy is an open-source tool that can act as either a standalone reverse proxy or a middleware component integrated into existing...