Aug 21, 2025 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Apple IOS, IPadOS, And MacOS added to CISA KEV — confirmed in-the-wild exploitation.
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2025-43300 Apple iOS, iPadOS, and macOS Out-of-Bounds Write

  • Actively exploited (CISA KEV)
  • Listed on CISA KEV

Apple IOS, IPadOS, And MacOS Memory Corruption is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Critical exposure

CVE-2025-53763 Microsoft Purview Data Governance privilege escalation

  • CVSS 9.8
  • Potential privilege escalation to admin/root

New critical Microsoft Purview Data Governance privilege escalation (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2025-52352 Aikaan IoT management platform v3.25.0325-5-g2e9c59796 provides a configuration to disable user s...

  • CVSS 9.8
  • Authentication bypass — unauthenticated access risk

New critical disclosure (CVSS 9.8) — high severity with a short public awareness window before exploit material typically surfaces.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2010-20112 CVSS 9.3

Amlib’s NetOpacs webquery.dll contains a stack-based buffer overflow vulnerability triggered by improper handling of HTTP GET parameters.

CVE-2010-20113 CVSS 9.3

EasyFTP Server 1.7.0.11 and earlier contains a stack-based buffer overflow vulnerability in its HTTP interface.

CVE-2010-20115 CVSS 9.3

Arcane Software’s Vermillion FTP Daemon (vftpd) versions up to and including 1.31 contains a memory corruption vulnerability triggered by...

CVE-2010-20121 CVSS 9.3

EasyFTP Server versions up to 1.7.0.11 contain a stack-based buffer overflow vulnerability in the FTP command parser.

CVE-2010-20122 CVSS 9.3

Xftp FTP Client version up to and including 3.0 (build 0238) contain a stack-based buffer overflow vulnerability triggered by a malicious...

CVE-2025-3128 CVSS 9.3

A remote unauthenticated attacker who has bypassed authentication could execute arbitrary OS commands to disclose, tamper with, destroy o...

CVE-2025-52352 CVSS 9.8

Aikaan IoT management platform v3.25.0325-5-g2e9c59796 provides a configuration to disable user sign-up in distributed deployments by hid...

CVE-2025-53763 CVSS 9.8

Improper access control in Azure Databricks allows an unauthorized attacker to elevate privileges over a network.

CVE-2025-53795 CVSS 9.1

Improper authorization in Microsoft PC Manager allows an unauthorized attacker to elevate privileges over a network.

CVE-2025-57761 CVSS 9.4

WeGIA is a Web manager for charitable institutions.

View critical disclosures

cvelogic Threat Intelligence