Oct 23, 2024 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Fortinet FortiManager added to CISA KEV — confirmed in-the-wild exploitation.
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2024-47575 Fortinet FortiManager Missing Authentication

  • Actively exploited (CISA KEV)
  • Listed on CISA KEV

Confirmed in-the-wild exploitation per CISA KEV — active threat momentum, not theoretical risk.

Critical exposure

CVE-2024-47901 Siemens Intermesh 7177 Hybrid 2.0 Subscriber Code Execution

  • CVSS 10
  • Remote code execution exposure

New critical Siemens Intermesh 7177 Hybrid 2.0 Subscriber Code Execution (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2024-49668 Unrestricted Upload of File with Dangerous Type vulnerability in christopherdewese1099 Verbalize...

  • CVSS 10

New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2024-20329 CVSS 9.9

New critical Cisco Adaptive Security Appliance Software exposure disclosed.

CVE-2024-20412 CVSS 9.3

New critical Cisco Firepower Threat Defense exposure disclosed.

CVE-2024-20424 CVSS 9.9

New critical Cisco Secure Firewall Management Center exposure disclosed.

CVE-2024-47901 CVSS 10

A vulnerability has been identified in InterMesh 7177 Hybrid 2.0 Subscriber (All versions < V8.2.12), InterMesh 7707 Fire Subscriber (All...

CVE-2024-49652 CVSS 9.9

Unrestricted Upload of File with Dangerous Type vulnerability in Renata Bracichowicz 3D Work In Progress renee-work-in-progress allows Up...

CVE-2024-49653 CVSS 9.9

Unrestricted Upload of File with Dangerous Type vulnerability in james-eggers Portfolleo portfolleo allows Upload a Web Shell to a Web Se...

CVE-2024-49658 CVSS 9.9

Unrestricted Upload of File with Dangerous Type vulnerability in ecomerciar Woocommerce Custom Profile Picture woo-custom-profile-picture...

CVE-2024-49668 CVSS 10

Unrestricted Upload of File with Dangerous Type vulnerability in christopherdewese1099 Verbalize WP verbalize-wp allows Upload a Web Shel...

CVE-2024-49669 CVSS 9.9

Unrestricted Upload of File with Dangerous Type vulnerability in Alexander De Ridder INK Official ink-official allows Upload a Web Shell...

CVE-2024-49671 CVSS 9.9

Unrestricted Upload of File with Dangerous Type vulnerability in Dogu Pekgoz AI Image Generator for Your Content & Featured Images – AI P...

View critical disclosures

cvelogic Threat Intelligence