Feb 3, 2026 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

Sangoma FreePBX: 2 CVEs added to CISA KEV today.
10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2021-39935 GitLab Community and Enterprise Editions Server-Side Request Forgery (SSRF)

Actively exploited (CISA KEV)
Listed on CISA KEV

GitLab Community And Enterprise Editions SSRF is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Critical exposure

CVE-2025-10878 Omran Fikir Odalari Adminpando SQL Injection

CVSS 10

New critical Omran Fikir Odalari Adminpando SQL Injection (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2026-1633 The Synectix LAN 232 TRIO 3-Port serial to ethernet adapter exposes its web management interface...

CVSS 10

New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

CVE-2025-40551 KEV

SolarWinds Web Help Desk Deserialization of Untrusted Data

CVE-2025-64328 KEV

Sangoma FreePBX OS Command Injection

CVE-2021-39935 KEV

GitLab Community and Enterprise Editions Server-Side Request Forgery (SSRF)

CVE-2019-19006 KEV

Sangoma FreePBX Improper Authentication

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2020-37071 CVSS 9.3

CraftCMS 3 vCard Plugin 1.0.0 contains a deserialization vulnerability that allows unauthenticated attackers to execute arbitrary PHP cod...

CVE-2020-37092 CVSS 9.3

Netis E1+ version 1.2.32533 contains a hardcoded root account vulnerability that allows unauthenticated attackers to access the device wi...

CVE-2025-10878 CVSS 10

A SQL injection vulnerability exists in the login functionality of Fikir Odalari AdminPando 1.0.1 before 2026-01-26.

CVE-2025-65078 CVSS 9.3

An untrusted search path vulnerability has been identified in the Embedded Solutions Framework in various Lexmark devices.

CVE-2026-1341 CVSS 9.3

Avation Light Engine Pro exposes its configuration and control interface without any authentication or access control.

CVE-2026-1632 CVSS 9.3

MOMA Seismic Station Version v2.4.2520 and prior exposes its web management interface without requiring authentication, which could allow...

CVE-2026-1633 CVSS 10

The Synectix LAN 232 TRIO 3-Port serial to ethernet adapter exposes its web management interface without requiring authentication, allowi...

CVE-2026-25150 CVSS 9.3

Qwik is a performance focused javascript framework.

CVE-2026-25241 CVSS 9.3

PEAR is a framework and distribution system for reusable PHP components.

CVE-2026-25510 CVSS 9.9

CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture with RBAC authorization and theme supp...

View critical disclosures

cvelogic Threat Intelligence