May 13, 2024 Cyber Threat Intelligence
Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Daily summary
- Google Chromium added to CISA KEV — confirmed in-the-wild exploitation.
- Modcluster Enterprise Linux: public exploit or PoC linked (XSS)
Top threats today
Three highest-priority changes — analyst brief, not a CVE dump.
Critical active threat
CVE-2024-4671
Google Chromium Visuals Use-After-Free
- Actively exploited (CISA KEV)
- Listed on CISA KEV
Google Chromium Use-After-Free is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.
Active exploit activity
CVE-2023-6710
A flaw was found in the mod_proxy_cluster in the Apache server.
- Public exploit or PoC available
- Exploit activity linked
Modcluster Enterprise Linux XSS now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.
Active exploitation
CISA KEV — confirmed in-the-wild exploitation.
Google Chromium Visuals Use-After-Free
View KEV additions
Exploitation dynamics
Nothing flagged in this category for this digest.
See EPSS increases
cvelogic
Threat Intelligence