May 13, 2024 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Google Chromium added to CISA KEV — confirmed in-the-wild exploitation.
  • Modcluster Enterprise Linux: public exploit or PoC linked (XSS)

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2024-4671 Google Chromium Visuals Use-After-Free

  • Actively exploited (CISA KEV)
  • Listed on CISA KEV

Google Chromium Use-After-Free is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Active exploit activity

CVE-2023-6710 A flaw was found in the mod_proxy_cluster in the Apache server.

  • Public exploit or PoC available
  • Exploit activity linked

Modcluster Enterprise Linux XSS now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

View KEV additions

Exploit & PoC activity

CVE-2023-6710 Exploit

A flaw was found in the mod_proxy_cluster in the Apache server.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

Nothing flagged in this category for this digest.

View critical disclosures

cvelogic Threat Intelligence