Mar 28, 2026 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Cogentdatahub Cogent Datahub — exploitation likelihood rose sharply (EPSS 6.8% → 28% · rising (+22%)).
  • 9 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical exposure

CVE-2011-3493 Cogentdatahub Cogent Datahub Buffer Overflow

  • Exploitation likelihood sharply increased
  • CVSS 10
  • EPSS 6.8% → 28% · rising (+22%)

Cogentdatahub Cogent Datahub: EPSS 6.8% → 28% · rising (+22%) — EPSS is climbing faster than peer CVEs in this window, a leading indicator even before KEV or public exploit linkage.

Critical exposure

CVE-2025-15604 Tokuhirom Amon2

  • CVSS 9.8

New critical disclosure (CVSS 9.8) — high severity with a short public awareness window before exploit material typically surfaces.

Critical exposure

CVE-2026-3256 HTTP::Session versions through 0.53 for Perl defaults to using insecurely generated session ids.

  • CVSS 9.8

New critical disclosure (CVSS 9.8) — high severity with a short public awareness window before exploit material typically surfaces.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

CVE-2011-3493 EPSS 6.8% → 28% · rising (+22%) CVSS 10

Cogentdatahub Cogent Datahub Buffer Overflow

See EPSS increases

New critical disclosures

CVE-2016-20049 CVSS 9.3

JAD 1.5.8e-1kali1 and prior contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by suppl...

CVE-2017-20225 CVSS 9.3

TiEmu 2.08 and prior contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by exploiting i...

CVE-2017-20227 CVSS 9.3

JAD Java Decompiler 1.5.8e-1kali1 and prior contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitra...

CVE-2017-20229 CVSS 9.3

MAWK 1.3.3-17 and prior contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by exploitin...

CVE-2018-25220 CVSS 9.3

Bochs 2.6-5 contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by supplying an oversize...

CVE-2018-25221 CVSS 9.3

EChat Server 3.1 contains a buffer overflow vulnerability in the chat.ghp endpoint that allows remote attackers to execute arbitrary code...

CVE-2018-25223 CVSS 9.3

Crashmail 1.6 contains a stack-based buffer overflow vulnerability that allows remote attackers to execute arbitrary code by sending mali...

CVE-2025-15604 CVSS 9.8

Amon2 versions before 6.17 for Perl use an insecure random_string implementation for security functions.

CVE-2026-3256 CVSS 9.8

HTTP::Session versions through 0.53 for Perl defaults to using insecurely generated session ids.

View critical disclosures

cvelogic Threat Intelligence