Mar 4, 2026 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Checkpoint Vpn-1 Firewall-1 — exploitation likelihood rose sharply (EPSS 9.5% → 72% · rising (+63%)).
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Emerging exploitation risk

CVE-2002-1623 Checkpoint Vpn-1 Firewall-1

  • Exploitation likelihood sharply increased
  • EPSS 9.5% → 72% · rising (+63%)

Checkpoint Vpn-1 Firewall-1: EPSS 9.5% → 72% · rising (+63%) — EPSS is climbing faster than peer CVEs in this window, a leading indicator even before KEV or public exploit linkage.

Emerging exploitation risk

CVE-2018-10548 Canonical Debian Linux DoS

  • Exploitation likelihood sharply increased
  • EPSS 14% → 53% · rising (+38%)

Canonical Debian Linux: EPSS 14% → 53% · rising (+38%) — EPSS is climbing faster than peer CVEs in this window, a leading indicator even before KEV or public exploit linkage.

Critical exposure

CVE-2026-20131 Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management Deserialization of Untrusted Data

  • CVSS 10
  • Network edge / SD-WAN deployments affected

New critical Cisco Secure Firewall Management Center (FMC) Deserialization (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

CVE-2002-1623 EPSS 9.5% → 72% · rising (+63%) CVSS 5

Checkpoint Vpn-1 Firewall-1

CVE-2018-10548 EPSS 14% → 53% · rising (+38%) CVSS 7.5

Canonical Debian Linux DoS

CVE-2009-4873 EPSS 22% → 60% · rising (+38%) CVSS 10

Rhinosoft Serv-u Buffer Overflow

CVE-2004-0786 EPSS 11% → 48% · rising (+37%) CVSS 5

Apache Http Server DoS

CVE-2023-2164 EPSS 19% → 52% · rising (+33%) CVSS 5.4

Gitlab cross-site scripting

CVE-2004-0488 EPSS 31% → 63% · rising (+32%) CVSS 7.5

Apache Debian Linux Buffer Overflow

CVE-2005-2728 EPSS 32% → 62% · rising (+30%) CVSS 5

Apache Http Server DoS

CVE-2000-1039 EPSS 17% → 45% · rising (+28%) CVSS 5

Microsoft Windows 95 DoS

CVE-2014-0117 EPSS 29% → 57% · rising (+28%) CVSS 4.3

Apache Http Server DoS

CVE-2014-3556 EPSS 21% → 48% · rising (+28%) CVSS 6.8

F5 Nginx Command Injection

See EPSS increases

New critical disclosures

CVE-2025-46108 CVSS 9.8

D-link Dir-513 A1FW110 is vulnerable to Buffer Overflow in the function formTcpipSetup.

CVE-2025-70219 CVSS 9.8

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the goform/formDeviceReboot.

CVE-2025-70221 CVSS 9.8

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formLogin.

CVE-2025-70222 CVSS 9.8

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formLogin,goform/getAuthCode.

CVE-2025-70223 CVSS 9.8

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formAdvNetwork.

CVE-2025-70225 CVSS 9.8

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curtime parameter to the goform/formEasySetupWWConfig component

CVE-2025-70226 CVSS 9.8

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formEasySetupWizard.

CVE-2026-20131 CVSS 10

Cisco Secure Firewall Management Center (FMC) Software and Cisco Security Cloud Control (SCC) Firewall Management Deserialization of Untrusted Data

CVE-2026-29000 CVSS 9.3

pac4j-jwt versions prior to 4.5.9, 5.7.9, and 6.3.3 contain an authentication bypass vulnerability in JwtAuthenticator when processing en...

CVE-2026-3545 CVSS 9.6

Insufficient data validation in Navigation in Google Chrome prior to 145.0.7632.159 allowed a remote attacker to potentially perform a sa...

View critical disclosures

cvelogic Threat Intelligence