Apr 17, 2025 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Apple Multiple Products: 2 CVEs added to CISA KEV today.
  • Tp-link Vn020 F3v Firmware: public exploit or PoC linked (Memory Corruption)
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2025-31200 Apple Multiple Products Memory Corruption

  • Actively exploited (CISA KEV)
  • Listed on CISA KEV
  • Remote code execution exposure

Apple Multiple Products Code Execution is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Active exploit activity

CVE-2024-12344 A vulnerability, which was classified as critical, was found in TP-Link VN020 F3v(T) TT_V6.2.1021.

  • Public exploit or PoC available
  • Exploit activity linked

Tp-link Vn020 F3v Firmware Memory Corruption now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Critical exposure

CVE-2024-53924 Dgorissen Pycel Code Execution

  • CVSS 9.8
  • Remote code execution exposure

New critical Dgorissen Pycel Code Execution (CVSS 9.8) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

View KEV additions

Exploit & PoC activity

CVE-2024-48445 Exploit

An issue in compop.ca ONLINE MALL v.3.5.3 allows a remote attacker to execute arbitrary code via the rid, tid, et, and ts parameters.

CVE-2024-12955 Exploit

A vulnerability has been found in PHPGurukul Blood Bank & Donor Management System 2.4 and classified as problematic.

CVE-2024-12342 Exploit

A vulnerability was found in TP-Link VN020 F3v(T) TT_V6.2.1021.

CVE-2024-12344 Exploit

A vulnerability, which was classified as critical, was found in TP-Link VN020 F3v(T) TT_V6.2.1021.

CVE-2024-48840 Exploit

Unauthorized Access vulnerabilities allow Remote Code Execution.

CVE-2024-44762 Exploit

A discrepancy in error messages for invalid login attempts in Webmin Usermin v2.100 allows attackers to enumerate valid user accounts.

CVE-2024-42640 Exploit

angular-base64-upload prior to v0.1.21 is vulnerable to unauthenticated remote code execution via demo/server.php.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2024-53924 CVSS 9.8

Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one begi...

CVE-2025-28009 CVSS 9.8

A SQL Injection vulnerability exists in the `u` parameter of the progress-body-weight.php endpoint of Dietiqa App v1.0.20.

CVE-2025-29662 CVSS 9.8

A RCE vulnerability in the core application in LandChat 3.25.12.18 allows an unauthenticated attacker to execute system code via remote n...

CVE-2025-39436 CVSS 9.1

Unrestricted Upload of File with Dangerous Type vulnerability in aidraw I Draw idraw allows Using Malicious Files.This issue affects I Dr...

CVE-2025-39550 CVSS 9.8

Deserialization of Untrusted Data vulnerability in Shahjahan Jewel FluentCommunity fluent-community allows Object Injection.This issue af...

CVE-2025-39551 CVSS 9.8

Deserialization of Untrusted Data vulnerability in Mahmudul Hasan Arif FluentBoards fluent-boards allows Object Injection.This issue affe...

CVE-2025-39587 CVSS 9.3

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Stylemix Cost Calculator Builder co...

CVE-2025-39588 CVSS 9.8

Deserialization of Untrusted Data vulnerability in bdthemes Ultimate Store Kit Elementor Addons ultimate-store-kit allows Object Injectio...

CVE-2025-39595 CVSS 9.3

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Quentn.com GmbH Quentn WP quentn-wp...

CVE-2025-39596 CVSS 9.8

Weak Authentication vulnerability in Quentn.com GmbH Quentn WP quentn-wp allows Privilege Escalation.This issue affects Quentn WP: from n...

View critical disclosures

cvelogic Threat Intelligence