Home
» Risk & Exploitation
» Daily threat intelligence
» Nov 18, 2024
Nov 18, 2024 Cyber Threat Intelligence
Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Daily summary
Palo Alto Networks PAN-OS: 2 CVEs added to CISA KEV today.
10 new critical disclosures — review patch status on exposed services.
Top threats today
Three highest-priority changes — analyst brief, not a CVE dump.
Critical active threat
CVE-2024-0012
Palo Alto Networks PAN-OS Management Interface Authentication Bypass
Actively exploited (CISA KEV)
CVSS 9.3
Listed on CISA KEV
Potential privilege escalation to admin/root
Palo Alto Networks PAN-OS Privilege Escalation is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.
Critical exposure
CVE-2024-44756
Nuserp Nus-m9 Erp SQL Injection
New critical Nuserp Nus-m9 Erp SQL Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Critical exposure
CVE-2024-52432
Nixsolutions Nix Anti-spam Light Deserialization
New critical Nixsolutions Nix Anti-spam Light Deserialization (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.
Active exploitation
CISA KEV — confirmed in-the-wild exploitation.
Palo Alto Networks PAN-OS Management Interface Authentication Bypass
Palo Alto Networks PAN-OS Management Interface OS Command Injection
Progress Kemp LoadMaster OS Command Injection
View KEV additions
Exploitation dynamics
Nothing flagged in this category for this digest.
See EPSS increases
New critical disclosures
NUS-M9 ERP Management Software v3.0.0 was discovered to contain a SQL injection vulnerability via the usercode parameter at /UserWH/check...
Cobbler, a Linux installation server that allows for rapid setup of network installation environments, has an improper authentication vul...
Jpress until v5.1.1 has arbitrary file uploads on the windows platform, and the construction of non-standard file formats such as .jsp.
AVSCMS v8.2.0 was discovered to contain weak default credentials for the Administrator account.
An arbitrary file upload vulnerability in the component /main/fileupload.php of AVSCMS v8.2.0 allows attackers to execute arbitrary code...
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Pressaholic WordPress Video Robot -...
Deserialization of Untrusted Data vulnerability in NIX Solutions Ltd NIX Anti-Spam Light nix-anti-spam-light allows Object Injection.This...
Deserialization of Untrusted Data vulnerability in Mindstien Technologies My Geo Posts Free my-geo-posts-free allows Object Injection.Thi...
Deserialization of Untrusted Data vulnerability in supsystic Popup by Supsystic popup-by-supsystic allows Command Injection.This issue af...
View critical disclosures
cvelogic
Threat Intelligence