Aug 1, 2025 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

Acftp — exploitation likelihood rose sharply (EPSS 27% → 40% · rising (+13%)).
10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Emerging exploitation risk

CVE-2006-2242 Acftp DoS

Exploitation likelihood sharply increased
EPSS 27% → 40% · rising (+13%)

Acftp: EPSS 27% → 40% · rising (+13%) — EPSS is climbing faster than peer CVEs in this window, a leading indicator even before KEV or public exploit linkage.

Critical exposure

CVE-2025-50870 Institute-of-Current-Students 1.0 is vulnerable to Incorrect Access Control in the mydetailsstude...

CVSS 9.8

New critical disclosure (CVSS 9.8) — high severity with a short public awareness window before exploit material typically surfaces.

High-risk exposure

CVE-2013-10060 Netgear Dgn2200b Firmware Command Injection

CVSS 9.4

New high-severity Netgear Dgn2200b Firmware Command Injection — watch for exploit drops and scanner noise in the first 72 hours after disclosure.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

CVE-2006-2242 EPSS 27% → 40% · rising (+13%) CVSS 5

Acftp DoS

See EPSS increases

New critical disclosures

CVE-2013-10047 CVSS 9.3

An unrestricted file upload vulnerability exists in MiniWeb HTTP Server <= Build 300 that allows unauthenticated remote attackers to uplo...

CVE-2013-10048 CVSS 9.3

An OS command injection vulnerability exists in various legacy D-Link routers—including DIR-300 rev B and DIR-600 (firmware ≤ 2.13 and ≤...

CVE-2013-10049 CVSS 9.3

An OS command injection vulnerability exists in multiple Raidsonic NAS devices—specifically tested on IB-NAS5220 and IB-NAS4220—via the u...

CVE-2013-10051 CVSS 9.3

A remote PHP code execution vulnerability exists in InstantCMS version 1.6 and earlier due to unsafe use of eval() within the search view...

CVE-2013-10055 CVSS 9.3

An unauthenticated arbitrary file upload vulnerability exists in Havalite CMS version 1.1.7 (and possibly earlier) in the upload.php script.

CVE-2013-10060 CVSS 9.4

An authenticated OS command injection vulnerability exists in Netgear routers (tested on the DGN2200B model) firmware versions 1.0.0.36 a...

CVE-2025-50870 CVSS 9.8

Institute-of-Current-Students 1.0 is vulnerable to Incorrect Access Control in the mydetailsstudent.php endpoint.

CVE-2025-54574 CVSS 9.3

Squid is a caching proxy for the Web.

CVE-2025-54792 CVSS 9.3

LocalSend is an open-source app to securely share files and messages with nearby devices over local networks without needing an internet...

CVE-2025-6000 CVSS 9.1

A privileged Vault operator within the root namespace with write permission to {{sys/audit}} may obtain code execution on the underlying...

View critical disclosures

cvelogic Threat Intelligence