Dec 17, 2024 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Cleo Multiple Products added to CISA KEV — confirmed in-the-wild exploitation.
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2024-55956 Cleo Multiple Products Unauthenticated File Upload

  • Actively exploited (CISA KEV)
  • Listed on CISA KEV

Confirmed in-the-wild exploitation per CISA KEV — active threat momentum, not theoretical risk.

Critical exposure

CVE-2024-12356 BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) Command Injection

  • CVSS 9.8

New critical BeyondTrust Privileged Remote Access (PRA) And Remote Support (RS) Command Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2024-29646 Radare2 Buffer Overflow

  • CVSS 9.8

New critical Radare2 Buffer Overflow (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Cleo Multiple Products Unauthenticated File Upload

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2024-12356 CVSS 9.8

BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) Command Injection

CVE-2024-29646 CVSS 9.8

Buffer Overflow vulnerability in radarorg radare2 v.5.8.8 allows an attacker to execute arbitrary code via the name, type, or group fields.

CVE-2024-31668 CVSS 9.1

rizin before v0.6.3 is vulnerable to Improper Neutralization of Special Elements via meta_set function in librz/analysis/meta.

CVE-2024-50379 CVSS 9.8

Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability during JSP compilation in Apache Tomcat permits an RCE on case insensitiv...

CVE-2024-54662 CVSS 9.1

Dante 1.4.0 through 1.4.3 (fixed in 1.4.4) has incorrect access control for some sockd.conf configurations involving socksmethod.

CVE-2024-55496 CVSS 9.1

A vulnerability has been found in the 1000projects Bookstore Management System PHP MySQL Project 1.0.

CVE-2024-55513 CVSS 9.1

A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90.

CVE-2024-55515 CVSS 9.8

A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 3.90.

CVE-2024-55516 CVSS 9.1

A vulnerability was found in Raisecom MSG1200, MSG2100E, MSG2200, and MSG2300 v3.90.

CVE-2024-8972 CVSS 9.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mobil365 Informatics Saha365 App al...

View critical disclosures

cvelogic Threat Intelligence