Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Three highest-priority changes — analyst brief, not a CVE dump.
Critical exposure
New critical Mozilla Firefox Use-After-Free (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical Apple Ipados Buffer Overflow (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical Mozilla Firefox Memory Corruption (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
CISA KEV — confirmed in-the-wild exploitation.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
NVIDIA APEX for Linux contains a vulnerability where an unauthorized attacker could cause a deserialization of untrusted data.
A path handling issue was addressed with improved validation.
A Missing Authentication for Critical Function vulnerability in Pharos Controls Mosaic Show Controller firmware version 2.15.3 could allo...
A parsing issue in the handling of directory paths was addressed with improved path validation.
A buffer overflow was addressed with improved bounds checking.
MinIO is a high-performance object storage system.
LoLLMs WEBUI provides the Web user interface for Lord of Large Language and Multi modal Systems.
MinIO is a high-performance object storage system.
Sandbox escape due to use-after-free in the Graphics: Canvas2D component.
Memory safety bugs present in Firefox 148 and Thunderbird 148.