Mar 25, 2024 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

Fortinet FortiClient EMS added to CISA KEV — confirmed in-the-wild exploitation.
10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2019-7256 Nice Linear eMerge E3-Series OS Command Injection

Actively exploited (CISA KEV)
Listed on CISA KEV

Nice Linear EMerge E3-Series Command Injection is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Critical exposure

CVE-2022-36407 Insertion of Sensitive Information into Log File vulnerability in Hitachi Virtual Storage Platfor...

CVSS 9.9

New critical disclosure (CVSS 9.9) — high severity with a short public awareness window before exploit material typically surfaces.

Critical exposure

CVE-2024-28393 Scalapay SQL Injection

CVSS 9.8

New critical Scalapay SQL Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

CVE-2023-48788 KEV

Fortinet FortiClient EMS SQL Injection

CVE-2021-44529 KEV

Ivanti Endpoint Manager Cloud Service Appliance (EPM CSA) Code Injection

CVE-2019-7256 KEV

Nice Linear eMerge E3-Series OS Command Injection

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2022-36407 CVSS 9.9

Insertion of Sensitive Information into Log File vulnerability in Hitachi Virtual Storage Platform, Hitachi Virtual Storage Platform VP95...

CVE-2024-28386 CVSS 9.8

An issue in Home-Made.io fastmagsync v.1.7.51 and before allows a remote attacker to execute arbitrary code via the getPhpBin() component.

CVE-2024-28393 CVSS 9.8

SQL injection vulnerability in scalapay v.1.2.41 and before allows a remote attacker to escalate privileges via the ScalapayReturnModuleF...

CVE-2024-28421 CVSS 9.8

SQL Injection vulnerability in Razor 0.8.0 allows a remote attacker to escalate privileges via the ChannelModel::updateapk method of the...

CVE-2024-2862 CVSS 9.1

This vulnerability allows remote attackers to reset the password of anonymous users without authorization on the affected LG LED Assistant.

CVE-2024-2865 CVSS 9.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mergen Software Quality Management...

CVE-2024-2873 CVSS 9.1

A vulnerability was found in wolfSSH's server-side state machine before versions 1.4.17.

CVE-2024-29303 CVSS 9.8

The delete admin users function of SourceCodester PHP Task Management System 1.0 is vulnerable to SQL Injection

CVE-2024-29650 CVSS 9.8

An issue in @thi.ng/paths v.5.1.62 and before allows a remote attacker to execute arbitrary code via the mutIn and mutInManyUnsafe compon...

CVE-2024-29666 CVSS 9.8

Insecure Permissions vulnerability in Vehicle Monitoring platform system CMSV6 v.7.31.0.2 through v.7.32.0.3 allows a remote attacker to...

View critical disclosures

cvelogic Threat Intelligence