Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Three highest-priority changes — analyst brief, not a CVE dump.
Critical active threat
BerriAI LiteLLM SQL Injection is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.
Critical exposure
New critical Gitroom Postiz privilege escalation (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.
CISA KEV — confirmed in-the-wild exploitation.
BerriAI LiteLLM SQL Injection
Nothing flagged in this category for this digest.
Nothing flagged in this category for this digest.
Nornicdb is a distributed low-latency, Graph+Vector, Temporal MVCC with all sub-ms HNSW search, graph traversal, and writes.
Data Space Portal is an open-source Software as a Service (SaaS) solution designed to streamline Dataspace management.
Plunk is an open-source email platform built on top of AWS SES.
Emlog is an open source website building system.
Postiz is an AI social media scheduling tool.
FastGPT is an AI Agent building platform.
Sentry is an error tracking and performance monitoring tool.
Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities.
Linkwarden is a self-hosted, open-source collaborative bookmark manager to collect, organize and archive webpages.
An issue exists in Amazon Redshift JDBC Driver versions prior to 2.2.2.