Oct 29, 2025 Cyber Threat Intelligence

Track daily vulnerability activity, KEV additions, public exploits, critical disclosures, and EPSS risk shifts.

Daily summary

  • Casbin Casdoor: public exploit or PoC linked (CSRF)
  • 10 new critical disclosures — review patch status on exposed services.

Top threats today

Three highest-priority changes — analyst brief, not a CVE dump.

Active exploit activity

CVE-2023-34927 Casbin Casdoor CSRF

  • Public exploit or PoC available
  • Exploit activity linked

Casbin Casdoor CSRF now has public exploit or PoC linkage — assume opportunistic scanning and targeted follow-on activity.

Critical exposure

CVE-2025-12479 Azure-access Blu-ic2 Firmware CSRF

  • CVSS 10

New critical Azure-access Blu-ic2 Firmware CSRF (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.

Critical exposure

CVE-2025-12476 Resource Lacking AuthN.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5 .

  • CVSS 10

New critical disclosure (CVSS 10) — high severity with a short public awareness window before exploit material typically surfaces.

Active exploitation

CISA KEV — confirmed in-the-wild exploitation.

Nothing flagged in this category for this digest.

View KEV additions

Exploit & PoC activity

CVE-2023-34927 Exploit

Casdoor v1.331.0 and below was discovered to contain a Cross-Site Request Forgery (CSRF) in the endpoint /api/set-password.

View new exploit links

Exploitation dynamics

Nothing flagged in this category for this digest.

See EPSS increases

New critical disclosures

CVE-2018-25120 CVSS 9.3

D-Link DNS-343 ShareCenter devices running firmware versions up to and including 1.05 contain a command injection vulnerability in the Ma...

CVE-2024-45162 CVSS 9.8

A stack-based buffer overflow issue was discovered in the phddns client in Blu-Castle BCUM221E 1.0.0P220507 via the password field.

CVE-2025-11200 CVSS 9.8

MLflow Weak Password Requirements Authentication Bypass Vulnerability.

CVE-2025-11201 CVSS 9.8

MLflow Tracking Server Model Creation Directory Traversal Remote Code Execution Vulnerability.

CVE-2025-11202 CVSS 9.8

win-cli-mcp-server resolveCommandPath Command Injection Remote Code Execution Vulnerability.

CVE-2025-12476 CVSS 10

Resource Lacking AuthN.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5 .

CVE-2025-12477 CVSS 10

Server Version Disclosure.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5 .

CVE-2025-12478 CVSS 10

Non-Compliant TLS Configuration.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19.5 .

CVE-2025-12479 CVSS 10

Systemic Lack of Cross-Site Request Forgery (CSRF) Token Implementation.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through 1.19...

CVE-2025-63622 CVSS 9.8

A vulnerability was found in code-projects Online Complaint Site 1.0.

View critical disclosures

cvelogic Threat Intelligence