Oracle Agile Product Lifecycle Management (PLM) privilege escalation is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.
Critical exposure
CVE-2024-8525An unrestricted upload of file with dangerous type in Automated Logic WebCTRL 7.0 could allow an...
CVSS 10
New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.
Critical exposure
CVE-2024-28892An OS command injection vulnerability exists in the name parameter of GoCast 1.1.3.
CVSS 9.8
New critical Mayuresh82 Gocast Command Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.