Aug 21, 2024 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Dahua IP Camera Firmware: 2 CVEs added to CISA KEV today.
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2021-31196 Microsoft Exchange Server Information Disclosure

  • Actively exploited (CISA KEV)
  • Listed on CISA KEV
  • Enterprise mail systems at risk

Microsoft Exchange Server RCE is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Critical exposure

CVE-2024-6386 Wpml RCE

  • CVSS 9.9
  • Internet-facing CMS deployments affected

New critical Wpml RCE (CVSS 9.9) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2024-28000 Litespeedtech Litespeed Cache privilege escalation

  • CVSS 9.8
  • Shared hosting environments affected

New critical Litespeedtech Litespeed Cache privilege escalation (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2024-28000 CVSS 9.8

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache.This issue affects LiteSpeed Cache...

CVE-2024-28987 CVSS 9.1

SolarWinds Web Help Desk Hardcoded Credential

CVE-2024-40453 CVSS 9.8

squirrellyjs squirrelly v9.0.0 and fixed in v.9.0.1 was discovered to contain a code injection vulnerability via the component options.va...

CVE-2024-42777 CVSS 9.8

An Unrestricted file upload vulnerability was found in "/music/ajax.php?action=signup" of Kashipara Music Management System v1.0, which a...

CVE-2024-42781 CVSS 9.8

A SQL injection vulnerability in "/music/ajax.php?action=login" of Kashipara Music Management System v1.0 allows remote attackers to exec...

CVE-2024-42782 CVSS 9.8

A SQL injection vulnerability in "/music/ajax.php?action=find_music" in Kashipara Music Management System v1.0 allows an attacker to exec...

CVE-2024-42783 CVSS 9.8

Kashipara Music Management System v1.0 is vulnerable to SQL Injection via /music/manage_playlist_items.php.

CVE-2024-42784 CVSS 9.8

A SQL injection vulnerability in "/music/controller.php?page=view_music" in Kashipara Music Management System v1.0 allows an attacker to...

CVE-2024-6386 CVSS 9.9

The WPML plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 4.6.12 via Twig Server-Side Te...

View critical disclosures

cvelogic Threat Intelligence