Nov 18, 2024 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Palo Alto Networks PAN-OS: 2 CVEs added to CISA KEV today.
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2024-0012 Palo Alto Networks PAN-OS Management Interface Authentication Bypass

  • Actively exploited (CISA KEV)
  • CVSS 9.3
  • Listed on CISA KEV
  • Potential privilege escalation to admin/root

Palo Alto Networks PAN-OS Privilege Escalation is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Critical exposure

CVE-2024-44756 Nuserp Nus-m9 Erp SQL Injection

  • CVSS 9.8

New critical Nuserp Nus-m9 Erp SQL Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2024-52432 Nixsolutions Nix Anti-spam Light Deserialization

  • CVSS 9.8

New critical Nixsolutions Nix Anti-spam Light Deserialization (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

CVE-2024-0012 KEV CVSS 9.3

Palo Alto Networks PAN-OS Management Interface Authentication Bypass

Palo Alto Networks PAN-OS Management Interface OS Command Injection

Progress Kemp LoadMaster OS Command Injection

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2024-44756 CVSS 9.8

NUS-M9 ERP Management Software v3.0.0 was discovered to contain a SQL injection vulnerability via the usercode parameter at /UserWH/check...

CVE-2024-47533 CVSS 9.8

Cobbler, a Linux installation server that allows for rapid setup of network installation environments, has an improper authentication vul...

CVE-2024-50919 CVSS 9.8

Jpress until v5.1.1 has arbitrary file uploads on the windows platform, and the construction of non-standard file formats such as .jsp.

CVE-2024-51051 CVSS 9.8

AVSCMS v8.2.0 was discovered to contain weak default credentials for the Administrator account.

CVE-2024-51053 CVSS 9.8

An arbitrary file upload vulnerability in the component /main/fileupload.php of AVSCMS v8.2.0 allows attackers to execute arbitrary code...

CVE-2024-52431 CVSS 9.3

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Pressaholic WordPress Video Robot -...

CVE-2024-52432 CVSS 9.8

Deserialization of Untrusted Data vulnerability in NIX Solutions Ltd NIX Anti-Spam Light nix-anti-spam-light allows Object Injection.This...

CVE-2024-52433 CVSS 9.8

Deserialization of Untrusted Data vulnerability in Mindstien Technologies My Geo Posts Free my-geo-posts-free allows Object Injection.Thi...

CVE-2024-52434 CVSS 9.1

Deserialization of Untrusted Data vulnerability in supsystic Popup by Supsystic popup-by-supsystic allows Command Injection.This issue af...

View critical disclosures

cvelogic Threat Intelligence