Mar 28, 2025 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Litespeedtech Litespeed Cache: public exploit or PoC linked (Auth Bypass)
  • Jasper Project Jasper — exploitation likelihood rose sharply (EPSS 18% → 33% · rising (+14%)).
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Active exploit activity

CVE-2024-4358 Progress Telerik Report Server Authentication Bypass by Spoofing

  • Public exploit or PoC available
  • Exploit activity linked
  • Authentication bypass — unauthenticated access risk

Progress Telerik Report Server Auth Bypass now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Active exploit activity

CVE-2024-44000 Litespeedtech Litespeed Cache Auth Bypass

  • Public exploit or PoC available
  • Exploit activity linked
  • Shared hosting environments affected

Shared-hosting stack with public exploit linkage — one PoC often maps to many tenants on the same provider footprint.

Emerging exploitation risk

CVE-2014-9029 Jasper Project Jasper Buffer Overflow

  • Exploitation likelihood sharply increased
  • EPSS 18% → 33% · rising (+14%)

Jasper Project Jasper: EPSS 18% → 33% · rising (+14%) — EPSS is climbing faster than peer CVEs in this window, a leading indicator even before KEV or public exploit linkage.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

CVE-2024-44000 Exploit

Insufficiently Protected Credentials vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Authentication Bypass...

CVE-2024-8945 Exploit

A vulnerability has been found in CodeCanyon RISE Ultimate Project Manager 3.7.0 and classified as critical.

CVE-2024-23692 Exploit

Rejetto HTTP File Server Improper Neutralization of Special Elements Used in a Template Engine

CVE-2024-4358 Exploit

Progress Telerik Report Server Authentication Bypass by Spoofing

CVE-2024-4956 Exploit

Path Traversal in Sonatype Nexus Repository 3 allows an unauthenticated attacker to read system files.

View new exploit links

Exploitation dynamics

CVE-2014-9029 EPSS 18% → 33% · rising (+14%) CVSS 7.5

Jasper Project Jasper Buffer Overflow

See EPSS increases

New critical disclosures

CVE-2024-38985 CVSS 9.8

janryWang products depath v1.0.6 and cool-path v1.1.2 were discovered to contain a prototype pollution via the set() method at setIn (lib...

CVE-2024-38988 CVSS 9.8

alizeait unflatto <= 1.0.2 was discovered to contain a prototype pollution via the method exports.unflatto at /dist/index.js.

CVE-2024-56975 CVSS 9.8

InvoicePlane (all versions tested as of December 2024) v.1.6.11 and before contains a remote code execution vulnerability in the upload_f...

CVE-2025-22953 CVSS 9.8

A SQL injection vulnerability exists in Epicor HCM 2021 1.9, with patches available: 5.16.0.1033/HCM2022, 5.17.0.1146/HCM2023, and 5.18.0...

CVE-2025-25579 CVSS 9.8

TOTOLINK A3002R V4.0.0-B20230531.1404 is vulnerable to Command Injection in /bin/boa via bandstr.

CVE-2025-28087 CVSS 9.8

Sourcecodester Online Exam System 1.0 is vulnerable to SQL Injection via dash.php.

CVE-2025-28089 CVSS 9.1

maccms10 v2025.1000.4047 is vulnerable to Server-Side Request Forgery (SSRF) via the Scheduled Task function.

CVE-2025-28090 CVSS 9.1

maccms10 v2025.1000.4047 is vulnerable to Server-Side Request Forgery (SSRF) in the Collection Custom Interface feature.

CVE-2025-28091 CVSS 9.1

maccms10 v2025.1000.4047 has a Server-Side Request Forgery (SSRF) vulnerability via Add Article.

CVE-2025-28256 CVSS 9.8

An issue in TOTOLINK A3100R V4.1.2cu.5247_B20211129 allows a remote attacker to execute arbitrary code via the setWebWlanIdx of the file...

View critical disclosures

cvelogic Threat Intelligence