Sep 19, 2024 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Ivanti Cloud Services Appliance (CSA) added to CISA KEV — confirmed in-the-wild exploitation.
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2024-8963 Ivanti Cloud Services Appliance (CSA) Path Traversal

  • Actively exploited (CISA KEV)
  • CVSS 9.4
  • Listed on CISA KEV

Ivanti Cloud Services Appliance (CSA) Path Traversal is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Critical exposure

CVE-2024-33109 Ergophone Sip-t28p Firmware Directory Traversal

  • CVSS 9.9

New critical Ergophone Sip-t28p Firmware Directory Traversal (CVSS 9.9) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2023-27584 Dragonfly is an open source P2P-based file distribution and image acceleration system.

  • CVSS 9.8
  • Authentication bypass — unauthenticated access risk

New critical Linuxfoundation Dragonfly Auth Bypass (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

CVE-2024-8963 KEV CVSS 9.4

Ivanti Cloud Services Appliance (CSA) Path Traversal

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2023-27584 CVSS 9.8

Dragonfly is an open source P2P-based file distribution and image acceleration system.

CVE-2024-31570 CVSS 9.8

libfreeimage in FreeImage 3.4.0 through 3.18.0 has a stack-based buffer overflow in the PluginXPM.cpp Load function via an XPM file.

CVE-2024-33109 CVSS 9.9

Directory Traversal in the web interface of the Tiptel IP 286 with firmware version 2.61.13.10 allows attackers to overwrite arbitrary fi...

CVE-2024-40125 CVSS 9.8

An arbitrary file upload vulnerability in the Media Manager function of Closed-Loop Technology CLESS Server v4.5.2 allows attackers to ex...

CVE-2024-45410 CVSS 9.8

Traefik is a golang, Cloud Native Application Proxy.

CVE-2024-45861 CVSS 9.2

Kastle Systems firmware prior to May 1, 2024, contained a hard-coded credential, which if accessed may allow an attacker to access sensit...

CVE-2024-46983 CVSS 9.8

sofa-hessian is an internal improved version of Hessian3/4 powered by Ant Group CO., Ltd.

CVE-2024-7785 CVSS 9.3

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Ece Software Electronic Tick...

CVE-2024-8986 CVSS 9.1

The grafana plugin SDK bundles build metadata into the binaries it compiles; this metadata includes the repository URI for the plugin bei...

View critical disclosures

cvelogic Threat Intelligence