Automation Boundary
This digest is automated CVE intake, not a reviewed threat-activity claim. It ranks public NVD records with EPSS enrichment and CISA KEV context so defenders have a daily review queue. Items without an exploitation signal should be treated as vulnerability-prioritization leads, not evidence of active intrusion.
Daily Counts
- NVD CVEs published in the source window: 138
- High or critical CVEs considered for ranking: 52
- CISA KEV additions on 2026-07-04: 0
- Ranked items published here: 10
Top 10 CVE Intake
| Rank | CVE | CVSS | EPSS percentile | Publication signal |
|---|---|---|---|---|
| 1 | CVE-2026-57991 | HIGH 7.4 | 50.9% | No public exploit signal in source text |
| 2 | CVE-2026-57993 | HIGH 7.4 | 45.8% | No public exploit signal in source text |
| 3 | CVE-2026-57981 | HIGH 8.8 | 42.9% | No public exploit signal in source text |
| 4 | CVE-2026-57974 | HIGH 8.8 | 42.9% | No public exploit signal in source text |
| 5 | CVE-2026-56645 | HIGH 8.8 | 42.9% | No public exploit signal in source text |
| 6 | CVE-2025-71364 | HIGH 8.1 | 42.2% | No public exploit signal in source text |
| 7 | CVE-2026-57988 | HIGH 7.1 | 41.6% | No public exploit signal in source text |
| 8 | CVE-2026-58293 | HIGH 8.1 | 40.9% | No public exploit signal in source text |
| 9 | CVE-2026-58289 | CRITICAL 9.0 | 40.9% | No public exploit signal in source text |
| 10 | CVE-2026-14622 | HIGH 7.3 | 40.2% | No public exploit signal in source text |
Source Notes
The source window is 2026-07-03T18:30:00.000Z to 2026-07-04T16:23:51.970Z. AttackTrace uses NVD publication timestamps, CISA KEV date-added values, and FIRST EPSS enrichment. Reviewed threat-activity briefs remain separate and require source-backed exploitation or campaign evidence.
Ranked CVEs
Improper link resolution before file access ('link following') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to disclose information over a network.
Open NVD recordServer-side request forgery (ssrf) in Microsoft Edge (Chromium-based) allows an unauthorized attacker to perform spoofing over a network.
Open NVD recordUse after free in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.
Open NVD recordInteger overflow or wraparound in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.
Open NVD recordHeap-based buffer overflow in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.
Open NVD recordpicklescan before 0.0.30 fails to detect the asyncio.unix_events._UnixSubprocessTransport._start function in pickle reduce methods, allowing remote code execution. Attackers can craft malicious pickle files embedding th...
Open NVD recordRelative path traversal in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.
Open NVD recordExternal control of file name or path in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.
Open NVD recordAccess of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.
Open NVD recordA vulnerability was found in jairiidriss restaurant-website-php-mysql up to 521428b5b612449df0cf4a5d15ee40cba67f3d35. This vulnerability affects unknown code of the file /admin/ajax_files of the component AJAX Endpoint....
Open NVD record