Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Three highest-priority changes — analyst brief, not a CVE dump.
Emerging exploitation risk
Apache Tomcat: EPSS 37% → 67% · rising (+31%) — EPSS is climbing faster than peer CVEs in this window, a leading indicator even before KEV or public exploit linkage.
Emerging exploitation risk
Google Android: EPSS 29% → 52% · rising (+23%) — EPSS is climbing faster than peer CVEs in this window, a leading indicator even before KEV or public exploit linkage.
Critical exposure
New critical disclosure (CVSS 9.8) — high severity with a short public awareness window before exploit material typically surfaces.
CISA KEV — confirmed in-the-wild exploitation.
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
Apache Tomcat
Google Android
Measuresoft Scadapro Buffer Overflow
Adobe Air DoS
Adobe Air
NovumOS is a custom 32-bit operating system written in Zig and x86 Assembly.
Hot Chocolate is an open-source GraphQL server.
ChurchCRM is an open-source church management system.
SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles.
SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles.
SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles.
NovumOS is a custom 32-bit operating system written in Zig and x86 Assembly.
ChurchCRM is an open-source church management system.
protobufjs compiles protobuf definitions into JavaScript (JS) functions.