Weekly Threat Summary 2023-W46 — 16 items tracked
16 CVEs 1 KEV EPSS avg 1.0000
Lane Breakdown
1 on-fire 1 patch-priority 1 watchlist 13 background
Top CVEs by EPSS
CVE-2023-44487 KEV
1.0000EPSS
Exploit-DB: HTTP/2 2.0 - Denial Of Service (DOS)
CVSS 7.5
CVE-2022-42889
Metasploit module: Apache Commons Text RCE
CVSS 9.8
CVE-2022-29599
A flaw was found in the maven-shared-utils package. This issue allows a Comma...
CVSS 9.8
CVE-2023-24422
A flaw was found in the script-security Jenkins Plugin. In affected versions ...
CVSS 8.8
CVE-2023-5408
A privilege escalation flaw was found in the node restriction admission plugi...
CVSS 7.2
CVE-2022-25857
A flaw was found in the org.yaml.snakeyaml package. This flaw allows an attac...
CVSS 7.5
CVE-2023-39325
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A cl...
CVSS 7.5
CVE-2023-39321
A flaw was found in Golang. Processing an incomplete post-handshake message f...
CVSS 7.5
CVE-2023-39322
A flaw was found in Golang. QUIC connections do not set an upper bound on the...
CVSS 7.5
CVE-2023-25761
A flaw was found in the Jenkins JUnit plugin. The affected versions of the JU...
CVSS 5.4
CISA KEV Additions
CVE-2023-44487 KEV
Exploit-DB: HTTP/2 2.0 - Denial Of Service (DOS)
← All weekly summaries