Oct 20, 2025 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Kentico Xperience CMS: 2 CVEs added to CISA KEV today.
  • Adobe Bridge — exploitation likelihood rose sharply (EPSS 8.3% → 26% · rising (+18%)).
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Critical active threat

CVE-2022-48503 Apple Multiple Products Unspecified

  • Actively exploited (CISA KEV)
  • Listed on CISA KEV
  • Remote code execution exposure

Apple Multiple Products RCE is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.

Emerging exploitation risk

CVE-2020-9552 Adobe Bridge RCE

  • Exploitation likelihood sharply increased
  • Remote code execution exposure
  • EPSS 8.3% → 26% · rising (+18%)

Adobe Bridge: EPSS 8.3% → 26% · rising (+18%) — EPSS is climbing faster than peer CVEs in this window, a leading indicator even before KEV or public exploit linkage.

Critical exposure

CVE-2025-12001 Azure-access Blu-ic2 Firmware cross-site scripting

  • CVSS 10

New critical Azure-access Blu-ic2 Firmware cross-site scripting (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

CVE-2025-61884 KEV

Oracle E-Business Suite Server-Side Request Forgery (SSRF)

CVE-2025-33073 KEV

Microsoft Windows SMB Client Improper Access Control

CVE-2025-2746 KEV

Kentico Xperience CMS Authentication Bypass Using an Alternate Path or Channel

CVE-2025-2747 KEV

Kentico Xperience CMS Authentication Bypass Using an Alternate Path or Channel

View KEV additions

Exploit & PoC activity

Nothing flagged in this category for this digest.

View new exploit links

Exploitation dynamics

CVE-2020-9552 EPSS 8.3% → 26% · rising (+18%) CVSS 7.8

Adobe Bridge RCE

See EPSS increases

New critical disclosures

CVE-2018-25118 CVSS 10

GeoVision embedded IP devices, confirmed on GV-BX1500 and GV-MFD1501, contain a remote command injection vulnerability via /PictureCatch....

CVE-2025-10678 CVSS 9.3

NetBird VPN when installed using vendor's provided script failed to remove or change default password of an admin account created by ZITA...

CVE-2025-12001 CVSS 10

Lack of application manifest sanitation could lead to potential stored XSS.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1...

CVE-2025-31342 CVSS 9.3

An unrestricted upload of file with dangerous type vulnerability in the upload file function of Galaxy Software Services Corporation Vita...

CVE-2025-41028 CVSS 9.3

A SQL Injection vulnerability has been found in Epsilon RH by Grupo Castilla.

CVE-2025-54957 CVSS 9.8

An issue was discovered in Dolby UDC 4.5 through 4.13.

CVE-2025-61303 CVSS 9.8

Hatching Triage Sandbox Windows 10 build 2004 (2025-08-14) and Windows 10 LTSC 2021(2025-08-14) contains a vulnerability in its Windows b...

CVE-2025-61455 CVSS 9.8

SQL Injection vulnerability exists in Bhabishya-123 E-commerce 1.0, specifically within the signup.inc.php endpoint.

CVE-2025-61932 CVSS 9.3

Motex LANSCOPE Endpoint Manager Improper Verification of Source of a Communication Channel

CVE-2025-9574 CVSS 9.9

Missing Authentication for Critical Function vulnerability in ABB ALS-mini-s4 IP, ABB ALS-mini-s8 IP.This issue affects .

View critical disclosures

cvelogic Threat Intelligence