Home
» Risk & Exploitation
» Daily threat intelligence
» Sep 19, 2025
Sep 19, 2025 Cyber Threat Intelligence
Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.
Daily summary
10 new critical disclosures — review patch status on exposed services.
Top threats today
Three highest-priority changes — analyst brief, not a CVE dump.
High-risk exposure
CVE-2022-4980
Generalbytes Crypto Application Server Auth Bypass
CVSS 9.3
Authentication bypass — unauthenticated access risk
New high-severity Generalbytes Crypto Application Server Auth Bypass — watch for exploit drops and scanner noise in the first 72 hours after disclosure.
High-risk exposure
CVE-2025-34205
Vasion Virtual Appliance Application SQL injection
New high-severity Vasion Virtual Appliance Application SQL injection — watch for exploit drops and scanner noise in the first 72 hours after disclosure.
High-risk exposure
CVE-2025-34192
Vasion Virtual Appliance Application
New critical-severity CVE in today's window — elevated exposure signal, early in the lifecycle.
Active exploitation
CISA KEV — confirmed in-the-wild exploitation.
Nothing flagged in this category for this digest.
View KEV additions
Exploitation dynamics
Nothing flagged in this category for this digest.
See EPSS increases
New critical disclosures
General Bytes Crypto Application Server (CAS) beginning with version 20201208 prior to 20220531.38 (backport) and 20220725.22 (mainline)...
MicroWorld eScan AV's update mechanism failed to ensure authenticity and integrity of updates: update packages were delivered and accepte...
Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 22.0.893 and Application versions prior to 20.0.2140 (macOS...
Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 22.0.951 and Application prior to 20.0.2368 (VA and SaaS de...
Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 22.0.1049 and Application versions prior to 20.0.2786 (VA a...
Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 22.0.1002 and Application versions prior to 20.0.2614 (VA a...
Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 22.0.843 and Application prior to 20.0.1923 (VA and SaaS de...
Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application (VA and SaaS deployments) mount host configuration and secret...
CWP Control Web Panel OS Command Injection
Accela Automation Platform 22.2.3.0.230103 contains multiple vulnerabilities in the Test Script feature.
View critical disclosures
cvelogic
Threat Intelligence