Oct 15, 2024 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Mozilla Firefox added to CISA KEV — confirmed in-the-wild exploitation.
  • WordPress plugin RCE/exploit activity: 2 CVEs flagged today.
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2024-30088 Microsoft Windows Kernel TOCTOU Race Condition

  • Actively exploited (CISA KEV)
  • Listed on CISA KEV
  • Potential privilege escalation to admin/root

Microsoft Windows privilege escalation is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Critical exposure

CVE-2024-48411 Mayurik Online Tours \& Travels Management System SQL Injection

  • CVSS 9.8

New critical Mayurik Online Tours \& Travels Management System SQL Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2024-9634 Givewp RCE

  • CVSS 9.8
  • Internet-facing CMS deployments affected

New critical Givewp RCE (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2024-10004 CVSS 9.1

Opening an external link to an HTTP website when Firefox iOS was previously closed and had an HTTPS tab open could in some cases result i...

CVE-2024-10018 CVSS 9.8

Improper permission control in the mobile application (com.transsion.aivoiceassistant) can lead to the launch of any unexported component.

CVE-2024-48411 CVSS 9.8

itsourcecode Online Tours and Travels Management System v1.0 is vulnerable to SQL Injection (SQLI) via a crafted payload to the val-email...

CVE-2024-48779 CVSS 9.8

An issue in Wanxing Technology's Yitu project Management Software 3.2.2 allows a remote attacker to execute arbitrary code via the platfo...

CVE-2024-48781 CVSS 9.8

An issue in Wanxing Technology Yitu Project Management Kirin Edition 2.3.6 allows a remote attacker to execute arbitrary code via a speci...

CVE-2024-48782 CVSS 9.8

File Upload vulnerability in DYCMS Open-Source Version v2.0.9.41 allows a remote attacker to execute arbitrary code via the application o...

CVE-2024-49195 CVSS 9.8

Mbed TLS 3.5.x through 3.6.x before 3.6.2 has a buffer underrun in pkwrite when writing an opaque key pair

CVE-2024-9105 CVSS 9.8

The UltimateAI plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.8.3.

CVE-2024-9486 CVSS 9.8

A security issue was discovered in the Kubernetes Image Builder versions <= v0.1.37 where default credentials are enabled during the imag...

CVE-2024-9634 CVSS 9.8

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, a...

View critical disclosures

cvelogic Threat Intelligence