Jun 9, 2024 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • 3 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical exposure

CVE-2024-31244 Bricksforge privilege escalation

  • CVSS 9.8
  • Potential privilege escalation to admin/root

New critical Bricksforge privilege escalation (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2024-4577 PHP-CGI OS Command Injection

  • CVSS 9.8

New critical PHP Group PHP Command Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

High-risk exposure

CVE-2024-33565 Ukrsolution Barcode Scanner And Inventory Manager privilege escalation

  • CVSS 9.1
  • Potential privilege escalation to admin/root

New high-severity Ukrsolution Barcode Scanner And Inventory Manager privilege escalation — watch for exploit drops and scanner noise in the first 72 hours after disclosure.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2024-31244 CVSS 9.8

Missing Authorization vulnerability in Bricksforge.This issue affects Bricksforge: from n/a through 2.0.17.

CVE-2024-33565 CVSS 9.1

Missing Authorization vulnerability in UkrSolution Barcode Scanner with Inventory & Order Manager.This issue affects Barcode Scanner with...

View critical disclosures

cvelogic Threat Intelligence