Mar 17, 2025 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • 5 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical exposure

CVE-2025-25914 Carmelo Online Exam Mastering System SQL Injection

  • CVSS 9.8

New critical Carmelo Online Exam Mastering System SQL Injection (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2025-2395 Edetw U-office Force

  • CVSS 9.8

New critical disclosure (CVSS 9.8) — high severity with a short public awareness window before exploit material typically surfaces.

High-risk exposure

CVE-2025-2199 SQL injection vulnerability in the Innovación y Cualificación local administration plugin ajax.php.

  • CVSS 9.3

New critical-severity CVE in today's window — elevated exposure signal, early in the lifecycle.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2025-2199 CVSS 9.3

SQL injection vulnerability in the Innovación y Cualificación local administration plugin ajax.php.

CVE-2025-2200 CVSS 9.3

SQL injection vulnerability in the IcProgreso Innovación y Cualificación plugin.

CVE-2025-2395 CVSS 9.8

The U-Office Force from e-Excellence has an Improper Authentication vulnerability, allowing unauthenticated remote attackers to use a par...

CVE-2025-25650 CVSS 9.1

An issue in the storage of NFC card data in Dorset DG 201 Digital Lock H5_433WBSK_v2.2_220605 allows attackers to produce cloned NFC card...

CVE-2025-25914 CVSS 9.8

SQL injection vulnerability in Online Exam Mastering System v.1.0 allows a remote attacker to execute arbitrary code via the fid parameter

View critical disclosures

cvelogic Threat Intelligence